PortSwigger / json-web-token-attacker
☆107Updated 2 years ago
Related projects: ⓘ
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- X41 BeanStack - Stack Trace Fingerprinting BETA☆52Updated 3 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆112Updated 4 years ago
- A vulnerable application exposing Spring Boot Actuators☆123Updated 5 years ago
- JWT fuzzer☆104Updated 6 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆90Updated 2 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆149Updated 5 years ago
- ☆111Updated 4 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆163Updated 3 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆99Updated 5 years ago
- Here you can get full exploit for SAP NetWeaver AS JAVA☆73Updated 6 years ago
- poison and relay NTLM credentials☆172Updated 5 years ago
- ☆65Updated 3 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆137Updated 5 years ago
- Burp Suite extension for JAX-RS☆65Updated 7 years ago
- None of the exploit code or research is my own but all available in public domain☆27Updated 5 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 6 years ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆52Updated 4 years ago
- ☆41Updated 4 years ago
- A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web☆68Updated 4 years ago
- ☆103Updated 4 years ago
- ☆116Updated 4 years ago
- YSOSERIAL Integration with burp suite☆160Updated last year
- PoC exploit for VMware Cloud Director RCE (CVE-2020-3956)☆89Updated 4 years ago
- ☆75Updated 11 years ago
- ☆63Updated 5 years ago
- Fuzzing script for redirect URL validator☆48Updated 4 years ago