PortSwigger / serialization-examplesLinks
☆42Updated last year
Alternatives and similar repositories for serialization-examples
Users that are interested in serialization-examples are comparing it to the libraries listed below
Sorting:
- LFI to RCE via phpinfo() assistance or via controlled log file☆72Updated 2 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- NotSoCereal: A Deserialization exploit playground☆53Updated 3 years ago
- Wordlist to bruteforce for LFI☆126Updated 6 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆109Updated last year
- Prototype Pollution Scanner☆126Updated 4 years ago
- Workshop given at Hack in Paris 2019☆125Updated 2 years ago
- ☆157Updated 3 years ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆94Updated 6 years ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆55Updated 11 months ago
- ☆39Updated 2 years ago
- Transition form local file inclusion attacks to remote code exection☆65Updated 5 years ago
- Vulnerable SAML infrastructure training applicaiton☆54Updated 2 years ago
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆120Updated last year
- LFI Payloads List coolected from github repos☆83Updated 5 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated 2 years ago
- ☆27Updated 2 years ago
- Preparation for OSWE☆44Updated 5 years ago
- HTTP verb tampering & methods enumeration☆62Updated 2 months ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆78Updated 5 years ago
- Python exploit for the CVE-2021-22204 vulnerability in Exiftool☆94Updated 4 years ago
- A utility for automating the testing and re-signing of Express.js cookie secrets.☆59Updated 2 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆75Updated 2 years ago
- ☆169Updated 4 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- ☆34Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆81Updated last year
- ElasticSearch exploit and Pentesting guide for penetration tester☆29Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆32Updated 2 years ago