Paradoxis / Flask-UnsignLinks
Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
☆561Updated 6 months ago
Alternatives and similar repositories for Flask-Unsign
Users that are interested in Flask-Unsign are comparing it to the libraries listed below
Sorting:
- ☆843Updated 2 years ago
- Deriving RSA public keys from message-signature pairs☆323Updated last year
- 🎯 Server Side Template Injection Payloads☆663Updated 11 months ago
- Simple DNS Rebinding Service☆663Updated 5 years ago
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆391Updated 2 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆368Updated 10 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆879Updated 3 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆631Updated last year
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆753Updated 2 weeks ago
- Automatic SSTI detection tool with interactive interface☆1,096Updated 2 months ago
- A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.☆307Updated last year
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆392Updated 5 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆625Updated last year
- ☆891Updated 3 months ago
- Herramienta para evadir disable_functions y open_basedir☆433Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆701Updated last month
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆251Updated 6 months ago
- Magic hashes – PHP hash "collisions"☆777Updated 3 months ago
- Content-Type Research☆618Updated last year
- A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.☆714Updated last year
- Client Side Prototype Pollution Scanner☆518Updated 2 years ago
- 🎯 XML External Entity (XXE) Injection Payload List☆1,183Updated 11 months ago
- Java RMI Vulnerability Scanner☆870Updated 11 months ago
- A cheatsheet for exploiting server-side SVG processors.☆739Updated 4 years ago
- Because just a dark theme wasn't enough!☆565Updated 6 months ago
- ☆406Updated 3 years ago
- Flask Session Cookie Decoder/Encoder☆701Updated 4 months ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆90Updated 6 years ago
- Nuclei plugin for BurpSuite☆1,262Updated 9 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆129Updated 5 years ago