PortSwigger/portable-data-exfiltration external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PortSwigger/portable-data-exfiltration

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PortSwigger/portable-data-exfiltration)

Close

PortSwigger / portable-data-exfiltrationView on GitHubMore

• External links
• Readme badge

This repo contains all the injections mentioned in my talk and enumerators.

☆137Dec 1, 2023Updated 2 years ago

Alternatives and similar repositories for portable-data-exfiltration

Users that are interested in portable-data-exfiltration are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Leoid / Python2Intruder

  View on GitHub
  Pythonize Intruder Payload
  ☆13Dec 15, 2020Updated 5 years ago
• Y4er / CVE-2021-35215

  View on GitHub
  SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE
  ☆47Oct 23, 2021Updated 4 years ago
• defparam / haptyc

  View on GitHub
  ☆94Sep 18, 2021Updated 4 years ago
• wrvenkat / burp-multistep-csrf-poc

  View on GitHub
  Burp extension to generate multi-step CSRF POC.
  ☆31Sep 23, 2019Updated 6 years ago
• irsdl / updated-SWFIntruder

  View on GitHub
  Updated version of SWFIntruder
  ☆27Aug 16, 2016Updated 9 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• alebeta90 / behindflare

  View on GitHub
  This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse pr…
  ☆14Feb 20, 2023Updated 3 years ago
• smackerdodi / allowed-methods

  View on GitHub
  get the http allowed methods for URLs list
  ☆14Feb 22, 2021Updated 5 years ago
• bodik / awesome-potatoes

  View on GitHub
  Study notes on Windows NTLM Reflection and token stealing based EOPs.
  ☆20May 5, 2021Updated 5 years ago
• W3rni0 / HacktivityCon_CTF_2020

  View on GitHub
  Writeup for the challenges in H@cktivityCon CTF 2020
  ☆17Aug 6, 2020Updated 5 years ago
• woodpecker-framework / woodpecker-bcel

  View on GitHub
  woodpecker框架专用bcel库
  ☆12Apr 30, 2021Updated 5 years ago
• imagemlt / myQLrules

  View on GitHub
  some codeql rules
  ☆15Apr 6, 2020Updated 6 years ago
• filedescriptor / untrusted-types

  View on GitHub
  ☆698Jul 4, 2022Updated 3 years ago
• Kloudle / pentesting-ibm-cloud

  View on GitHub
  ☆20Jan 12, 2022Updated 4 years ago
• neex / http2smugl

  View on GitHub
  ☆563Mar 27, 2025Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• 0xC01DF00D / Collabfiltrator

  View on GitHub
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆279Jan 28, 2025Updated last year
• mlcsec / clovery

  View on GitHub
  Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services
  ☆24Jan 21, 2021Updated 5 years ago
• WJDigby / catscan

  View on GitHub
  Scan and categorize websites for rapid triage
  ☆12Jun 23, 2022Updated 3 years ago
• nccgroup / CollaboratorPlusPlus

  View on GitHub
  ☆148Feb 17, 2022Updated 4 years ago
• opnsec / postMessage-logger

  View on GitHub
  Simple "postMessage logger" Chrome extension
  ☆104May 2, 2020Updated 6 years ago
• junnlikestea / bulkssrf

  View on GitHub
  Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.
  ☆37Jul 7, 2020Updated 5 years ago
• PortSwigger / scope-monitor

  View on GitHub
  Burp Suite Extension to monitor new scope
  ☆16Mar 31, 2021Updated 5 years ago
• 0xspade / s3cario

  View on GitHub
  ☆16May 3, 2021Updated 5 years ago
• shivsahni / FireBaseScanner

  View on GitHub
  The scripts helps security analsts to identify misconfigured firebase instances.
  ☆236Aug 9, 2022Updated 3 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• defparam / smuggler

  View on GitHub
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,082Jan 2, 2024Updated 2 years ago
• SewellDinG / Noise

  View on GitHub
  🧠碎片化知识
  ☆16Aug 26, 2020Updated 5 years ago
• knownsec / Minitools-bin_extractor

  View on GitHub
  A simple script for quickly mining sensitive information in binary files.
  ☆31Dec 1, 2020Updated 5 years ago
• smiegles / extract-relative-url-heapsnapshot

  View on GitHub
  Extract relative urls from a heap snapshot
  ☆87May 30, 2021Updated 5 years ago
• mzfr / takeover

  View on GitHub
  A tool for testing subdomain takeover possibilities at a mass scale.
  ☆50May 23, 2021Updated 5 years ago
• Vozec / CVE-2024-23897

  View on GitHub
  This repository presents a proof-of-concept of CVE-2024-23897
  ☆17Apr 16, 2024Updated 2 years ago
• sunny0day / burp-auto-drop

  View on GitHub
  Burp extension to automatically drop requests that match a certain regex.
  ☆10Mar 10, 2023Updated 3 years ago
• BitTheByte / BitTraversal

  View on GitHub
  Burpsuite Plugin to detect Directory Traversal vulnerabilities
  ☆27Jul 22, 2021Updated 4 years ago
• cnotin / RazorVulnerableApp

  View on GitHub
  DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SS…
  ☆28Aug 22, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• plum-umd / dexdump

  View on GitHub
  The dexdump tool
  ☆17Dec 27, 2013Updated 12 years ago
• 0ang3el / websocket-smuggle

  View on GitHub
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆395Aug 15, 2024Updated last year
• darklotuskdb / ios-reloader

  View on GitHub
  The iOS Reloader is a weaponizing tool for jailbroken iOS devices. It facilitates the installation of a collection of tools on iOS device…
  ☆16Sep 15, 2025Updated 9 months ago
• anshumanpattnaik / http-request-smuggling

  View on GitHub
  HTTP Request Smuggling Detection Tool
  ☆539Dec 21, 2023Updated 2 years ago
• chipik / SAP_RECON

  View on GitHub
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆225Sep 29, 2020Updated 5 years ago
• Raz0r / aemscan

  View on GitHub
  Adobe Experience Manager Vulnerability Scanner
  ☆188May 22, 2023Updated 3 years ago
• teknogeek / ssrf-sheriff

  View on GitHub
  A simple SSRF-testing sheriff written in Go
  ☆338Oct 31, 2024Updated last year