PortSwigger / example-scanner-checks

Related projects ⓘ

Alternatives and complementary repositories for example-scanner-checks

• PortSwigger / example-intruder-payloads
  ☆21Updated 2 years ago
• PortSwigger / custom-logger
  ☆17Updated 2 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆45Updated 3 years ago
• PortSwigger / reissue-request-scripter
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆29Updated 2 years ago
• redtimmy / Richsploit
  Exploitation toolkit for RichFaces
  ☆102Updated last year
• PortSwigger / sqlmap-dns-collaborator
  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap
  ☆36Updated 3 years ago
• h43z / dns-rebinding-tool
  dns rebind tool with custom scripts
  ☆75Updated last year
• mikaelkall / Exploits
  Exploits developed by Mikael Kall
  ☆48Updated last year
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• Metnew / write-ups
  ☆33Updated 2 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆104Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 6 years ago
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆40Updated 2 years ago
• PortSwigger / example-hello-world
  ☆32Updated 2 years ago
• masahiro331 / CVE-2020-8165
  ☆42Updated last year
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 2 years ago
• PortSwigger / flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆24Updated 2 years ago
• nccgroup / VulnerableDotNetHTTPRemoting
  Example Vulnerable .NET HTTP Remoting
  ☆75Updated 5 years ago
• kahla-sec / CVE-2021-27850_POC
  A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.
  ☆5Updated last year
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆106Updated 4 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆55Updated 3 years ago
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆26Updated 2 years ago
• arbazkiraak / web-cache-deception-checker
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆43Updated 3 years ago
• Haxel0rd / haxel0rds
  Some private tools i decided to release for public.
  ☆49Updated 8 months ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 3 years ago
• PortSwigger / asset-discovery
  Burp Suite extension to discover assets from HTTP response.
  ☆15Updated 3 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆124Updated 7 years ago
• duc-nt / CVE-2020-6287-exploit
  PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Or…
  ☆95Updated 4 years ago
• PortSwigger / example-custom-scan-insertion-points
  ☆11Updated 11 months ago
• Al1ex / CVE-2020-17530
  S2-061 CVE-2020-17530
  ☆29Updated 3 years ago