RUB-NDS/SAML-XXE-Test external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RUB-NDS/SAML-XXE-Test

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RUB-NDS/SAML-XXE-Test)

Close

RUB-NDS / SAML-XXE-TestView on GitHubMore

• External links
• Readme badge

Simple XXE test suite generated specifically for SAML interfaces

☆23May 18, 2018Updated 7 years ago

Alternatives and similar repositories for SAML-XXE-Test

Users that are interested in SAML-XXE-Test are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• RUB-NDS / BurpSSOExtension

  View on GitHub
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆120Apr 26, 2021Updated 5 years ago
• eur0pa / goGetBucket

  View on GitHub
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Dec 12, 2018Updated 7 years ago
• muttiopenbts / kisskissie

  View on GitHub
  XXE attack tool
  ☆31Feb 20, 2016Updated 10 years ago
• munsiwoo / ctf-write-ups

  View on GitHub
  Collection of CTF challenges I solved
  ☆11Jun 7, 2020Updated 5 years ago
• p4wsec / hackthebox

  View on GitHub
  ☆12Jan 21, 2019Updated 7 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• TheTwitchy / vulnd_xxe

  View on GitHub
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Mar 29, 2018Updated 8 years ago
• hahwul / can-i-protect-xss

  View on GitHub
  Everything about xss protection technology
  ☆14Oct 22, 2019Updated 6 years ago
• random-robbie / s3-tko

  View on GitHub
  AWS S3 Bucket Finder.
  ☆14Oct 28, 2025Updated 6 months ago
• zidekmat / graphql_beautifier

  View on GitHub
  Burp Suite extension to help make Graphql request more readable
  ☆32Dec 7, 2017Updated 8 years ago
• cosmoscrew / gomassdns

  View on GitHub
  A better dns bruteforcer written in golang
  ☆13Nov 4, 2018Updated 7 years ago
• dxa4481 / bygonessl

  View on GitHub
  A tool to discover bygonessl vulnerabilities using the facebook API
  ☆20Oct 2, 2019Updated 6 years ago
• random-robbie / S3-Listable

  View on GitHub
  S3 Buckets that will let you list all files inside them
  ☆14Apr 26, 2018Updated 8 years ago
• 0xPugal / bugbounty_profile

  View on GitHub
  Automate bug bounty recon using bash alias
  ☆15Aug 6, 2024Updated last year
• 0xdeadbeefJERKY / presentations

  View on GitHub
  ☆18Jun 21, 2019Updated 6 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• si9int / quick-recon.py

  View on GitHub
  Do some quick reconnaissance on a domain-based web-application
  ☆13Jun 1, 2021Updated 4 years ago
• pwndizzle / pybuster

  View on GitHub
  A multi-target URL bruteforcer
  ☆22Aug 6, 2018Updated 7 years ago
• munsiwoo / ctf-web-prob

  View on GitHub
  Collection of CTF challenges I made
  ☆53Jan 3, 2025Updated last year
• dsopas / h1-search

  View on GitHub
  Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
  ☆65Feb 26, 2019Updated 7 years ago
• eur0pa / tko-subs

  View on GitHub
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆12Aug 23, 2018Updated 7 years ago
• Static-Flow / DirectoryImporter

  View on GitHub
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Mar 1, 2023Updated 3 years ago
• ropnop / xxetimes

  View on GitHub
  An interactive OOB XXE data exfiltration tool
  ☆92May 31, 2017Updated 8 years ago
• BBerastegui / bucket-decloaker

  View on GitHub
  A simple tool to decloak/expose the bucket name behind a domain.
  ☆25Mar 20, 2026Updated last month
• zuBux / badbucket

  View on GitHub
  badbucket checks your s3 bucket for common misconfigurations
  ☆24Jun 25, 2017Updated 8 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• appsecco / VyAPI

  View on GitHub
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆86Feb 21, 2020Updated 6 years ago
• B34MR / zeroscan

  View on GitHub
  Zeroscan is a Domain Controller vulnerability scanner, that currently includes checks for Zerologon (CVE-2020-1472), MS-PAR/MS-RPRN and S…
  ☆11Apr 9, 2022Updated 4 years ago
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• random-robbie / bash-hacks

  View on GitHub
  little scripts of bash stuff that i've found handy.
  ☆16Feb 2, 2019Updated 7 years ago
• tarunkant / EndPoint-Finder

  View on GitHub
  Finds the End-Points in JavaScript files
  ☆99Oct 26, 2021Updated 4 years ago
• nullenc0de / Kali-Install-Script

  View on GitHub
  A custom script I created because I got tired of installing my tools manually!
  ☆13Nov 19, 2024Updated last year
• kelbyludwig / saml-attack-surface

  View on GitHub
  ☆29Jan 15, 2017Updated 9 years ago
• samhaxr / XXRF-Shots

  View on GitHub
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Feb 18, 2023Updated 3 years ago
• nullenc0de / discover

  View on GitHub
  Easy discovery of assets
  ☆13Jun 22, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• digininja / vuLnDAP

  View on GitHub
  A vulnerable LDAP based web app written in Golang
  ☆83Oct 31, 2023Updated 2 years ago
• dreadlocked / SSRFmap

  View on GitHub
  Simple Server Side Request Forgery services enumeration tool.
  ☆56Aug 23, 2018Updated 7 years ago
• leesoh / np

  View on GitHub
  A tool to parse, deduplicate, and query multiple port scans.
  ☆58Aug 11, 2023Updated 2 years ago
• federicodotta / HandyCollaborator

  View on GitHub
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆104Jun 1, 2018Updated 7 years ago
• RUB-NDS / FutureTrust

  View on GitHub
  FutureTrust analyzes electronic identification (eID) services in Europe and beyond. It is funded within the EU Framework Programme for Re…
  ☆12Nov 16, 2022Updated 3 years ago
• IOActive / AOSP-ExploitUserDictionary

  View on GitHub
  PoC Exploit for AOSP UserDictionary Content Provider (CVE-2018-9375)
  ☆21Mar 2, 2019Updated 7 years ago
• C-Sto / recursebuster

  View on GitHub
  rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments
  ☆249Oct 15, 2019Updated 6 years ago