SHELLING - a comprehensive OS command injection payload generator
☆110Jun 18, 2019Updated 6 years ago
Alternatives and similar repositories for command-injection-attacker
Users that are interested in command-injection-attacker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆44Sep 28, 2016Updated 9 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆125Apr 16, 2019Updated 7 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆155Feb 15, 2021Updated 5 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Listing subdomains about a main domain☆59May 9, 2018Updated 8 years ago
- Toolset for detecting reflected xss in websites☆116Oct 7, 2018Updated 7 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,170Dec 16, 2024Updated last year
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Jun 8, 2017Updated 9 years ago
- A collection of curated Java Deserialization Exploits☆593May 16, 2021Updated 5 years ago
- A lightweight CSRF Toolkit for easy Proof of concept☆172Jun 11, 2014Updated 11 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Feb 18, 2023Updated 3 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Mar 14, 2017Updated 9 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆73Aug 31, 2020Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- XSS Hunter Burp Plugin☆152Aug 31, 2018Updated 7 years ago
- Windows log and threat hunting with powershell☆16Dec 11, 2020Updated 5 years ago
- Assists in mass exportation of Nessus scans☆19Apr 20, 2018Updated 8 years ago
- A Python Framework For NoSQL Scanning and Exploitation☆604Dec 6, 2024Updated last year
- Subdomain brute force focused on speed and data serialization☆76Dec 27, 2022Updated 3 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆324Oct 20, 2021Updated 4 years ago
- A script to enumerate virtual hosts on a server.☆693Dec 28, 2017Updated 8 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 5 years ago
- A Powerful Subdomain Takeover Tool☆966Oct 17, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- This tool was written as PoC to article https://waf.ninja/libinjection-fuzz-to-bypass/☆40Oct 13, 2017Updated 8 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆827Dec 6, 2017Updated 8 years ago
- Ruby script to automate metasploit scanning, exploitation, and post-exploitation☆20Jul 4, 2020Updated 5 years ago
- This is the vulnerable "proxy" I used on this article: http://resources.infosecinstitute.com/the-ssrf-vulnerability/ . A simple, non-vali…☆14Sep 20, 2016Updated 9 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆219Oct 12, 2024Updated last year
- iOS Frida Scripts☆37Oct 2, 2017Updated 8 years ago
- A playground to practice SSRF Attacks against web apps☆17Oct 15, 2018Updated 7 years ago
- DNS Takeover tool written in Go☆2,082Mar 16, 2026Updated 2 months ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Mar 1, 2023Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,805Apr 26, 2024Updated 2 years ago
- ☆1,209Apr 28, 2026Updated last month
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆128May 30, 2018Updated 8 years ago
- Automated HTTP Request Repeating With Burp Suite☆895Dec 15, 2021Updated 4 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆341Aug 23, 2019Updated 6 years ago
- Send notifications if a new program is published on HackerOne using Pushbullet☆26Mar 12, 2017Updated 9 years ago
- A powerful target reconnaissance framework powered by graph theory.☆420Oct 21, 2022Updated 3 years ago