Paradoxis / Flask-UnsignLinks
Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
☆587Updated 10 months ago
Alternatives and similar repositories for Flask-Unsign
Users that are interested in Flask-Unsign are comparing it to the libraries listed below
Sorting:
- Deriving RSA public keys from message-signature pairs☆345Updated last year
- ☆917Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆260Updated 10 months ago
- 🎯 Server Side Template Injection Payloads☆705Updated last year
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆402Updated 2 years ago
- A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.☆323Updated last year
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆782Updated last month
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆720Updated this week
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆650Updated last year
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆401Updated 5 years ago
- Java RMI Vulnerability Scanner☆894Updated last year
- A cheatsheet for exploiting server-side SVG processors.☆768Updated 5 years ago
- Because just a dark theme wasn't enough!☆574Updated 9 months ago
- ☆950Updated 6 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆138Updated 5 years ago
- Simple DNS Rebinding Service☆693Updated 5 years ago
- Automatic SSTI detection tool with interactive interface☆1,207Updated last month
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆375Updated last year
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆227Updated 11 months ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆756Updated 3 years ago
- Flask Session Cookie Decoder/Encoder☆727Updated 7 months ago
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆285Updated last year
- ☆412Updated 3 years ago
- A library for parsing .DS_Store files and extracting file names☆485Updated 4 years ago
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆272Updated 2 years ago
- Grafana Unauthorized arbitrary file reading vulnerability☆365Updated 2 years ago
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆372Updated 2 years ago
- Nuclei plugin for BurpSuite☆1,290Updated last week
- Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()☆491Updated last year