PortSwigger / command-injection-attackerLinks
SHELLING - a comprehensive OS command injection payload generator
☆111Updated 6 years ago
Alternatives and similar repositories for command-injection-attacker
Users that are interested in command-injection-attacker are comparing it to the libraries listed below
Sorting:
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆263Updated 3 years ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆203Updated last year
- XSS Hunter Burp Plugin☆150Updated 6 years ago
- ☆162Updated 7 years ago
- CVE-2017-9506 - SSRF☆189Updated 3 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Updated 3 years ago
- Fuzzing for LFI using Burpsuite☆64Updated 8 years ago
- XXE Out of Band Server.☆170Updated 2 years ago
- Facebook Bug Bounties☆103Updated 4 years ago
- HTTP.ninja☆151Updated last year
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆139Updated 4 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆122Updated 6 years ago
- Resolve and quickly portscan a list of (sub)domains.☆87Updated 9 years ago
- Sample vulnerable code and its exploit code☆191Updated 4 years ago
- Simple "postMessage logger" Chrome extension☆98Updated 5 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated 2 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- Payloads for CRLF Injection☆224Updated 10 months ago
- Toolset for detecting reflected xss in websites☆115Updated 6 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆261Updated 3 months ago
- A lab for playing with NoSQL Injection☆133Updated 5 years ago
- A mini webserver with FTP support for XXE payloads☆332Updated last year
- Utils☆273Updated 9 years ago
- Damn Vulnerable Thick Client App☆150Updated 5 years ago
- ☆38Updated 5 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 8 years ago
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆153Updated last year
- Pentest/BugBounty progress control with scanning modules☆281Updated 5 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆134Updated 2 years ago