PortSwigger / example-custom-scan-insertion-points

Related projects: ⓘ

• PortSwigger / custom-logger
  ☆17Updated 2 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆75Updated 6 years ago
• Bypass007 / vuln
  Record some Vulnerabilities
  ☆44Updated last year
• PortSwigger / example-scanner-checks
  ☆15Updated 2 years ago
• random-robbie / cve-2020-0688
  cve-2020-0688
  ☆161Updated 4 years ago
• PortSwigger / example-intruder-payloads
  ☆20Updated 2 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• mpgn / CVE-2019-0192
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆209Updated 5 years ago
• dozernz / cve-2020-11651
  ☆103Updated 4 years ago
• wuntee / BurpAuthzPlugin
  ☆75Updated 11 years ago
• pyn3rd / CVE-2018-3191
  ☆94Updated this week
• PortSwigger / example-event-listeners
  ☆15Updated 9 months ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 4 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• jas502n / CVE-2019-0193
  Apache Solr DataImport Handler RCE
  ☆88Updated 5 years ago
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆102Updated 4 years ago
• masahiro331 / CVE-2020-9484
  ☆126Updated 2 years ago
• 0Kee-Team / CatchMail
  CatchMail can be used to find some email addresses!
  ☆73Updated last year
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆112Updated 4 years ago
• PortSwigger / reissue-request-scripter
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆29Updated 2 years ago
• m3ssap0 / spring-break_cve-2017-8046
  This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).
  ☆17Updated 3 years ago
• PortSwigger / aes-payloads
  Burp Extension to manipulate AES encrypted payloads
  ☆14Updated 2 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 5 years ago
• GrrrDog / ZeroNights-HackQuest-2016
  2 web tasks from ZeroNights HackQuest 2016
  ☆51Updated 7 years ago
• jas502n / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows - CGI-BIN
  ☆75Updated 5 years ago
• jas502n / CVE-2019-7238
  Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0
  ☆80Updated 5 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆135Updated 6 years ago
• masahiro331 / CVE-2019-10758
  ☆111Updated 4 years ago
• Bort-Millipede / WLT3Serial
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Updated 4 years ago
• LandGrey / dnstricker
  A simple dns resolver of dns-record and web-record log server for pentesting
  ☆133Updated 6 years ago