SecarmaLabs / psychoPATHLinks
psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & web file upload implementations allowing to write files into the webroot (aka document root). The "blind" aspect is the key here and is inherent to dynamic testing usually conducted with no access to the source …
☆141Updated 8 years ago
Alternatives and similar repositories for psychoPATH
Users that are interested in psychoPATH are comparing it to the libraries listed below
Sorting:
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227Updated 7 years ago
- "Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protecti…☆136Updated 7 years ago
- Image size issues plugin for Burp Suite☆95Updated 7 years ago
- ☆138Updated 7 years ago
- An exploit for Apache Struts CVE-2017-9805☆250Updated 7 years ago
- Brosec - An interactive reference tool to help security professionals utilize useful payloads and commands.☆355Updated 2 years ago
- ☆90Updated 5 months ago
- CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.☆176Updated 7 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- A lightweight CSRF Toolkit for easy Proof of concept☆174Updated 11 years ago
- Extract Sense out of Gibberish stuff☆82Updated 8 years ago
- PoC for an adaptive parallelised DNS prober☆44Updated 7 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 7 years ago
- The Inspector tool is a privilege escalation helper (PoC), easy to deployed on web server, this tool can list process running with root, …☆121Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- Extreme Vulnerable Node Application☆95Updated 6 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆276Updated 4 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆103Updated 7 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- ☆128Updated 8 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…☆161Updated 3 years ago
- XSS Tunnel is a standard HTTP proxy which sits on an attacker’s system. XSS Shell is a powerful XSS backdoor, in XSS Shell one can inter…☆88Updated 10 years ago
- proxy poc implementation of STARTTLS stripping attacks☆167Updated 3 years ago
- Fingerprints servers, finds exploits, scans WebDAV. May or may not also make coffee.☆121Updated 6 years ago
- LNHG - Mass Web Fingerprinter☆61Updated 9 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- Improved decoder for Burp Suite☆137Updated 3 years ago
- Public repository for improvements to the EXTRABACON exploit☆161Updated 8 years ago
- ☆84Updated 8 years ago
- Analyse SQL injection attempts in web server logs☆82Updated 8 years ago