Ruulian / CSPassLinks
This tool allows to automatically test for Content Security Policy bypass payloads.
☆44Updated 9 months ago
Alternatives and similar repositories for CSPass
Users that are interested in CSPass are comparing it to the libraries listed below
Sorting:
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆53Updated 9 months ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆93Updated 4 months ago
- Some tips for Bug Bounty using LibreOffice☆46Updated 3 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆90Updated 2 months ago
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆47Updated 10 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 7 months ago
- Memory mapping profiles for forensic analysis using volatility 2☆47Updated 2 years ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆148Updated 3 months ago
- ☆47Updated 3 years ago
- A python script to automatically generate shellcode payload from assembly files.☆13Updated 2 years ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆51Updated last week
- A python script to dump all the challenges locally of a CTFd-based Capture the Flag.☆145Updated 6 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆163Updated 9 months ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆73Updated last year
- Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format☆57Updated 2 years ago
- Challenge pour l'édition 2022 du midnight flag☆16Updated 3 years ago
- A complete table of results of types comparison in multiple languages☆32Updated 2 years ago
- POC for CVE-2021-41091☆65Updated 2 years ago
- Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.☆26Updated last month
- SSTI Payload Generator☆91Updated 2 years ago
- ☆95Updated 2 months ago
- ☆37Updated 2 years ago
- The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.☆133Updated 7 months ago
- Interact with Hackthebox using your terminal - Be faster and more competitive !☆121Updated last month
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆57Updated 2 years ago
- A webshell plugin and interactive shell for pentesting a Joomla website.☆52Updated 3 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆138Updated 5 months ago
- SkillArch☆26Updated 2 weeks ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆216Updated 7 months ago
- A cross platform library to write offensive and defensive security tools in Go☆81Updated last week