NytroRST / XSSFuzzerLinks
XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
☆141Updated 6 years ago
Alternatives and similar repositories for XSSFuzzer
Users that are interested in XSSFuzzer are comparing it to the libraries listed below
Sorting:
- Java serialization brute force attack tool.☆123Updated 7 years ago
- YSOSERIAL Integration with burp suite☆165Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆181Updated 5 years ago
- Apache Tomcat Remote Code Execution on Windows☆187Updated 5 years ago
- PoC or Exp Of Vulnerability☆107Updated 5 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆210Updated 6 years ago
- Lab for exploring SSRF vulnerabilities☆246Updated 4 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆112Updated 2 years ago
- Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!☆295Updated 5 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆77Updated 7 years ago
- poison and relay NTLM credentials☆175Updated 6 years ago
- XXE Out of Band Server.☆170Updated last year
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- CVE-2018-2893-PoC☆103Updated 6 years ago
- Collection of bypass gadgets to extend and wrap ysoserial payloads☆358Updated 3 years ago
- Central Repo for Burp extensions☆151Updated 3 years ago
- Java deserialization exploitation lab.☆235Updated 6 years ago
- A vulnerable application exposing Spring Boot Actuators☆122Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆75Updated 3 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆93Updated 3 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆139Updated 6 years ago
- CVE-2018-7600 Drupal RCE☆116Updated 7 years ago
- Redis 4.x & 5.x RCE☆141Updated 5 years ago
- Cross Site Scripting Payloads -- Variations☆72Updated last month
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆519Updated 4 years ago
- ☆127Updated 3 years ago
- CVE-2019-3396 confluence SSTI RCE☆174Updated 4 years ago
- Fuzzing for LFI using Burpsuite☆63Updated 8 years ago