PortSwigger / example-custom-scan-insertion-points
☆11Updated 9 months ago
Related projects: ⓘ
- ☆17Updated 2 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 6 years ago
- Record some Vulnerabilities☆44Updated last year
- ☆15Updated 2 years ago
- cve-2020-0688☆161Updated 4 years ago
- ☆20Updated 2 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆209Updated 5 years ago
- ☆103Updated 4 years ago
- ☆75Updated 11 years ago
- ☆94Updated this week
- ☆15Updated 9 months ago
- Decode the cookies set by balancer F5, and disclousure all pool ip☆77Updated 4 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- Apache Solr DataImport Handler RCE☆88Updated 5 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆102Updated 4 years ago
- ☆126Updated 2 years ago
- CatchMail can be used to find some email addresses!☆73Updated last year
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆112Updated 4 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆29Updated 2 years ago
- This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).☆17Updated 3 years ago
- Burp Extension to manipulate AES encrypted payloads☆14Updated 2 years ago
- A vulnerable application exposing Spring Boot Actuators☆123Updated 5 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆51Updated 7 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆75Updated 5 years ago
- Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0☆80Updated 5 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆135Updated 6 years ago
- ☆111Updated 4 years ago
- Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.☆35Updated 4 years ago
- A simple dns resolver of dns-record and web-record log server for pentesting☆133Updated 6 years ago