PortSwigger / server-side-prototype-pollutionLinks
☆39Updated 2 years ago
Alternatives and similar repositories for server-side-prototype-pollution
Users that are interested in server-side-prototype-pollution are comparing it to the libraries listed below
Sorting:
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- Make better use of the embedded browser that comes by default with Burp☆45Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆99Updated last month
- ☆40Updated 3 months ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆95Updated 2 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆61Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- ☆27Updated 3 years ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- Determine the running software version of a remote F5 BIG-IP management interface.☆68Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆29Updated 2 years ago
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆32Updated 2 years ago
- CVE-2023-33733 reportlab RCE☆119Updated 2 years ago
- Authentication Bypass in GoAnywhere MFT☆64Updated last year
- ☆34Updated 3 years ago
- ☆106Updated 2 years ago
- A better way of querying certificate transparency logs☆88Updated 6 months ago
- Juniper Firewalls CVE-2023-36845 - RCE☆52Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Updated 10 months ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆55Updated 11 months ago
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆118Updated 2 years ago
- Automatic Tools For Metabase Exploit Known As CVE-2023-38646☆27Updated 2 years ago