Ruulian / wconsole_extractor
WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a python function that leaks a file content and you have your shell :)
☆42Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for wconsole_extractor
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆42Updated 4 months ago
- Some tips for Bug Bounty using LibreOffice☆32Updated 3 months ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆144Updated 11 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆85Updated this week
- This tool allows to automatically test for Content Security Policy bypass payloads.☆38Updated 2 months ago
- Header Exploitation HTTP☆142Updated this week
- Interact with Hackthebox using your terminal - Be faster and more competitive !☆87Updated 6 months ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆78Updated 8 months ago
- ☆73Updated 3 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆115Updated last week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆79Updated last month
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆63Updated 7 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 3 weeks ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆103Updated 4 months ago
- A complete table of results of types comparison in multiple languages☆25Updated 2 years ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆65Updated 7 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆97Updated 2 months ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆99Updated this week
- ☆28Updated last month
- linikatz is a tool to attack AD on UNIX☆137Updated last year
- PP-finder Help you find gadget for prototype pollution exploitation☆137Updated 3 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 3 months ago
- ☆77Updated this week
- ☆65Updated last month
- Tool to enable blind sql injection attacks against websockets using sqlmap☆56Updated last year
- POC for CVE-2021-41091☆65Updated last year
- The Search Engine for Cybersecurity☆66Updated last month
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- A better way of querying certificate transparency logs☆76Updated last year
- CVE-2023-33733 reportlab RCE☆112Updated last year