Ruulian / CSPass
This tool allows to automatically test for Content Security Policy bypass payloads.
☆40Updated 6 months ago
Alternatives and similar repositories for CSPass:
Users that are interested in CSPass are comparing it to the libraries listed below
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆47Updated 6 months ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆89Updated last month
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆89Updated 4 months ago
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆47Updated 8 months ago
- Some tips for Bug Bounty using LibreOffice☆46Updated 2 weeks ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 5 months ago
- Memory mapping profiles for forensic analysis using volatility 2☆47Updated 2 years ago
- ☆44Updated 3 years ago
- A python script to dump all the challenges locally of a CTFd-based Capture the Flag.☆140Updated 3 months ago
- POC for CVE-2021-41091☆65Updated last year
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆147Updated last month
- Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.☆24Updated 3 months ago
- ☆89Updated last week
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆69Updated 11 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆151Updated 7 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆36Updated 4 months ago
- ☆36Updated last year
- Interact with Hackthebox using your terminal - Be faster and more competitive !☆106Updated last month
- CVE-2023-33733 reportlab RCE☆114Updated last year
- Styx is an cross-platform GUI interface for HackTheBox made in GoLang☆23Updated 7 months ago
- Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format☆56Updated 2 years ago
- A complete table of results of types comparison in multiple languages☆27Updated 2 years ago
- Challenge pour l'édition 2022 du midnight flag☆16Updated 2 years ago
- ☆80Updated 7 months ago
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆55Updated 2 years ago
- ☆40Updated 5 months ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆84Updated 6 years ago
- Lab used for workshop and CTF☆174Updated last month
- SSTI Payload Generator☆89Updated 2 years ago