RUB-NDS/SAML-XXE-Test external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RUB-NDS/SAML-XXE-Test

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RUB-NDS/SAML-XXE-Test)

Close

RUB-NDS / SAML-XXE-TestView on GitHubMore

• External links
• Readme badge

Simple XXE test suite generated specifically for SAML interfaces

☆23May 18, 2018Updated 8 years ago

Alternatives and similar repositories for SAML-XXE-Test

Users that are interested in SAML-XXE-Test are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• RUB-NDS / BurpSSOExtension

  View on GitHub
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆121Apr 26, 2021Updated 5 years ago
• eur0pa / goGetBucket

  View on GitHub
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Dec 12, 2018Updated 7 years ago
• muttiopenbts / kisskissie

  View on GitHub
  XXE attack tool
  ☆31Feb 20, 2016Updated 10 years ago
• munsiwoo / ctf-write-ups

  View on GitHub
  Collection of CTF challenges I solved
  ☆11Jun 7, 2020Updated 6 years ago
• p4wsec / hackthebox

  View on GitHub
  ☆12Jan 21, 2019Updated 7 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• TheTwitchy / vulnd_xxe

  View on GitHub
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Mar 29, 2018Updated 8 years ago
• hahwul / can-i-protect-xss

  View on GitHub
  Everything about xss protection technology
  ☆14Oct 22, 2019Updated 6 years ago
• random-robbie / s3-tko

  View on GitHub
  AWS S3 Bucket Finder.
  ☆14Oct 28, 2025Updated 7 months ago
• cosmoscrew / gomassdns

  View on GitHub
  A better dns bruteforcer written in golang
  ☆13Nov 4, 2018Updated 7 years ago
• dxa4481 / bygonessl

  View on GitHub
  A tool to discover bygonessl vulnerabilities using the facebook API
  ☆20Oct 2, 2019Updated 6 years ago
• random-robbie / S3-Listable

  View on GitHub
  S3 Buckets that will let you list all files inside them
  ☆14Apr 26, 2018Updated 8 years ago
• 0xPugal / bugbounty_profile

  View on GitHub
  Automate bug bounty recon using bash alias
  ☆15Aug 6, 2024Updated last year
• 0xdeadbeefJERKY / presentations

  View on GitHub
  ☆18Jun 21, 2019Updated 6 years ago
• si9int / quick-recon.py

  View on GitHub
  Do some quick reconnaissance on a domain-based web-application
  ☆13Jun 1, 2021Updated 5 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• pwndizzle / pybuster

  View on GitHub
  A multi-target URL bruteforcer
  ☆22Aug 6, 2018Updated 7 years ago
• munsiwoo / ctf-web-prob

  View on GitHub
  Collection of CTF challenges I made
  ☆53Jan 3, 2025Updated last year
• dsopas / h1-search

  View on GitHub
  Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
  ☆65Feb 26, 2019Updated 7 years ago
• eur0pa / tko-subs

  View on GitHub
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Aug 23, 2018Updated 7 years ago
• Static-Flow / DirectoryImporter

  View on GitHub
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Mar 1, 2023Updated 3 years ago
• mubix / tools

  View on GitHub
  Operational toolset utilizing git's submodule feature
  ☆57Feb 6, 2013Updated 13 years ago
• ropnop / xxetimes

  View on GitHub
  An interactive OOB XXE data exfiltration tool
  ☆92May 31, 2017Updated 9 years ago
• BBerastegui / bucket-decloaker

  View on GitHub
  A simple tool to decloak/expose the bucket name behind a domain.
  ☆24Mar 20, 2026Updated 2 months ago
• zuBux / badbucket

  View on GitHub
  badbucket checks your s3 bucket for common misconfigurations
  ☆24Jun 25, 2017Updated 8 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• appsecco / VyAPI

  View on GitHub
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Feb 21, 2020Updated 6 years ago
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• random-robbie / bash-hacks

  View on GitHub
  little scripts of bash stuff that i've found handy.
  ☆16Feb 2, 2019Updated 7 years ago
• tarunkant / EndPoint-Finder

  View on GitHub
  Finds the End-Points in JavaScript files
  ☆99Oct 26, 2021Updated 4 years ago
• laconicwolf / Burp-API-Scripts

  View on GitHub
  A collection of scripts used to interact with the Burp Rest API
  ☆57Feb 11, 2019Updated 7 years ago
• kelbyludwig / saml-attack-surface

  View on GitHub
  ☆30Jan 15, 2017Updated 9 years ago
• samhaxr / XXRF-Shots

  View on GitHub
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Feb 18, 2023Updated 3 years ago
• nullenc0de / discover

  View on GitHub
  Easy discovery of assets
  ☆13Jun 22, 2022Updated 3 years ago
• digininja / vuLnDAP

  View on GitHub
  A vulnerable LDAP based web app written in Golang
  ☆83Oct 31, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• ttffdd / XBadManners

  View on GitHub
  Tool for CVE-2018-16323
  ☆82Jan 17, 2019Updated 7 years ago
• dreadlocked / SSRFmap

  View on GitHub
  Simple Server Side Request Forgery services enumeration tool.
  ☆56Aug 23, 2018Updated 7 years ago
• leesoh / np

  View on GitHub
  A tool to parse, deduplicate, and query multiple port scans.
  ☆58Aug 11, 2023Updated 2 years ago
• federicodotta / HandyCollaborator

  View on GitHub
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Jun 1, 2018Updated 8 years ago
• RUB-NDS / FutureTrust

  View on GitHub
  FutureTrust analyzes electronic identification (eID) services in Europe and beyond. It is funded within the EU Framework Programme for Re…
  ☆12Nov 16, 2022Updated 3 years ago
• IOActive / AOSP-ExploitUserDictionary

  View on GitHub
  PoC Exploit for AOSP UserDictionary Content Provider (CVE-2018-9375)
  ☆21Mar 2, 2019Updated 7 years ago
• C-Sto / recursebuster

  View on GitHub
  rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments
  ☆250Oct 15, 2019Updated 6 years ago