PortSwigger / serialization-examples

Related projects ⓘ

Alternatives and complementary repositories for serialization-examples

• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated 7 months ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆50Updated 2 years ago
• BKreisel / sqlmap-websocket-proxy
  Tool to enable blind sql injection attacks against websockets using sqlmap
  ☆57Updated last year
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆69Updated 10 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• MayankPandey01 / Sparty-2.0
  An MS Sharepoint and Frontpage Auditing Tool
  ☆44Updated this week
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆60Updated last year
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆101Updated 3 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆60Updated 4 years ago
• Rhynorater / rebindMultiA
  ☆56Updated last year
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆61Updated 2 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆69Updated 3 years ago
• carlospolop / Pastos
  ☆47Updated 2 years ago
• PortSwigger / server-side-prototype-pollution
  ☆30Updated last year
• 0xGodson / blogs
  ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com
  ☆21Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆78Updated 2 years ago
• michael1026 / trashcompactor
  ☆65Updated last year
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆51Updated 3 years ago
• PenTestical / CVE-2020-9484
  ☆32Updated 2 years ago
• EasyRecon / wappaGo
  ☆52Updated 6 months ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆35Updated 2 years ago
• projectmonke / shortnameguesser
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆36Updated last year
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆77Updated 4 years ago
• PortSwigger / splitting-the-email-atom
  ☆65Updated last month
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆162Updated 3 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆52Updated 2 years ago