OpenSecurityResearch / flash-xdomain-xploitLinks
ActionScript Proof of Concept to perform cross-domain reads
☆16Updated 11 years ago
Alternatives and similar repositories for flash-xdomain-xploit
Users that are interested in flash-xdomain-xploit are comparing it to the libraries listed below
Sorting:
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients☆14Updated 11 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆39Updated 7 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- PHDAYS |||☆17Updated 12 years ago
- cve-2014-0130 rails directory traversal vuln☆19Updated 8 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- ☆23Updated 10 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- A set of compiled application restriction bypasses☆29Updated 8 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 9 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- BurpSuite Pro Python Extension☆18Updated 11 years ago
- Axis2 RPC Shell☆15Updated 9 years ago
- CVE-2017-8570 Exploit☆21Updated 7 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- Utilities for creating Burp Suite Extensions.☆21Updated 7 months ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆13Updated 6 years ago
- ☆16Updated 10 years ago
- ☆11Updated 7 years ago
- Study about HQL injection exploitation.☆51Updated 9 years ago
- A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.☆42Updated 6 years ago
- DoS PoC's for SAP products☆52Updated 7 years ago
- Nashorn Post Exploitation☆32Updated 7 years ago
- A tool to analyse JMX API security level.☆43Updated 10 years ago
- Burp Extender to add unique form tokens to scanner requests.☆14Updated 7 months ago