Paradoxis / Flask-UnsignLinks
Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
☆595Updated 10 months ago
Alternatives and similar repositories for Flask-Unsign
Users that are interested in Flask-Unsign are comparing it to the libraries listed below
Sorting:
- Deriving RSA public keys from message-signature pairs☆351Updated last year
- ☆924Updated 2 years ago
- Java RMI Vulnerability Scanner☆894Updated last year
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆404Updated 2 years ago
- A cheatsheet for exploiting server-side SVG processors.☆774Updated 5 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆261Updated 10 months ago
- 🎯 Server Side Template Injection Payloads☆718Updated last year
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆784Updated 2 months ago
- A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.☆322Updated last year
- ☆963Updated 7 months ago
- Simple DNS Rebinding Service☆701Updated 5 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆913Updated 3 years ago
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆735Updated this week
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆651Updated last year
- Because just a dark theme wasn't enough!☆576Updated 10 months ago
- A library for parsing .DS_Store files and extracting file names☆486Updated 4 years ago
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆402Updated 5 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆757Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆376Updated last year
- Magic hashes – PHP hash "collisions"☆793Updated 7 months ago
- Automatic SSTI detection tool with interactive interface☆1,233Updated 2 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆140Updated 6 years ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆228Updated last year
- Herramienta para evadir disable_functions y open_basedir☆461Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆639Updated last year
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆283Updated last year
- Nuclei plugin for BurpSuite☆1,297Updated this week
- Decode All Bases - Base Scheme Decoder☆573Updated 2 years ago
- Content-Type Research☆639Updated 3 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆796Updated last year