PortSwigger / serialization-examplesLinks
☆42Updated last year
Alternatives and similar repositories for serialization-examples
Users that are interested in serialization-examples are comparing it to the libraries listed below
Sorting:
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- NotSoCereal: A Deserialization exploit playground☆53Updated 3 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆108Updated last year
- ☆34Updated 3 years ago
- Workshop given at Hack in Paris 2019☆125Updated 2 years ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆94Updated 6 years ago
- An MS Sharepoint and Frontpage Auditing Tool☆55Updated 10 months ago
- Prototype Pollution Scanner☆127Updated 4 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- Exploits targeting Symfony☆208Updated last year
- Vulnerable SAML infrastructure training applicaiton☆54Updated 2 years ago
- Python exploit for the CVE-2021-22204 vulnerability in Exiftool☆95Updated 4 years ago
- ☆39Updated 2 years ago
- ☆157Updated 3 years ago
- HTTP verb tampering & methods enumeration☆62Updated 2 months ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆75Updated 2 years ago
- Preparation for OSWE☆44Updated 5 years ago
- Transition form local file inclusion attacks to remote code exection☆65Updated 5 years ago
- Vulnerability analysis and PoC for the Apache Tomcat - CGIServlet enableCmdLineArguments Remote Code Execution (RCE)☆19Updated 4 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆78Updated 5 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆120Updated 2 years ago
- Cheat sheet☆36Updated 5 years ago
- ☆27Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- ☆67Updated 2 years ago