NytroRST / XSSFuzzer
XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
☆140Updated 6 years ago
Alternatives and similar repositories for XSSFuzzer:
Users that are interested in XSSFuzzer are comparing it to the libraries listed below
- Java serialization brute force attack tool.☆123Updated 7 years ago
- YSOSERIAL Integration with burp suite☆162Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- Apache Tomcat Remote Code Execution on Windows☆185Updated 5 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆91Updated 3 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆179Updated 4 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- Java deserialization exploitation lab.☆236Updated 6 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆209Updated 6 years ago
- XXE Out of Band Server.☆170Updated last year
- CVE-2018-2893-PoC☆103Updated 6 years ago
- Lab for exploring SSRF vulnerabilities☆246Updated 3 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- CVE-2018-7600 Drupal RCE☆115Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆111Updated 2 years ago
- Central Repo for Burp extensions☆150Updated 3 years ago
- poison and relay NTLM credentials☆174Updated 6 years ago
- A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web☆70Updated 4 years ago
- (PoC) Python version of CVE-2019-11043 exploit by neex☆145Updated 5 years ago
- SQL Server Reporting Services(CVE-2020-0618)中的RCE☆198Updated 5 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆137Updated 6 years ago
- ☆116Updated 4 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆150Updated 6 years ago
- Redis 4.x & 5.x RCE☆139Updated 5 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 7 years ago
- PoC or Exp Of Vulnerability☆107Updated 5 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆71Updated 6 years ago
- Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)☆126Updated 2 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆514Updated 4 years ago