Exploit script for the CFOR vulnerability using Github's GraphQL API
☆23Aug 7, 2024Updated last year
Alternatives and similar repositories for cfor_exploit
Users that are interested in cfor_exploit are comparing it to the libraries listed below
Sorting:
- Android webviews and securiy☆23Sep 18, 2025Updated 5 months ago
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago
- A compiler for microarchitectural weird machines☆19Aug 10, 2024Updated last year
- ☆13Mar 4, 2021Updated 4 years ago
- ☆36Jun 21, 2024Updated last year
- Attack & Defense CTF dashboard☆16Oct 7, 2021Updated 4 years ago
- ☆21Sep 12, 2025Updated 5 months ago
- QilingLab challenge writeup☆22Sep 25, 2021Updated 4 years ago
- Passively check for XSS character encodings☆18Feb 7, 2026Updated 3 weeks ago
- IDA plugin to make classes automatically☆20Oct 31, 2024Updated last year
- AWS S3 Bucket Finder.☆14Oct 28, 2025Updated 4 months ago
- A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository☆19Sep 29, 2022Updated 3 years ago
- V8sandbox_bypass using stack misalignment☆23Aug 25, 2024Updated last year
- By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be byp…☆14May 25, 2025Updated 9 months ago
- Analyze an APK archive.☆28Feb 24, 2024Updated 2 years ago
- A collection of one off hacks and simple scripts☆26Mar 21, 2023Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 8 months ago
- ☆27Jul 30, 2021Updated 4 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆25Feb 11, 2023Updated 3 years ago
- My browser pwn collections. Mainly JavaScript engine stuff.☆33Jan 27, 2025Updated last year
- An Australian 16x Map for Farming Simulator FS17 - PC Only.☆16Oct 20, 2017Updated 8 years ago
- Utility for creating ZipSlip archives☆82Feb 9, 2023Updated 3 years ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 2 months ago
- assets for www.hahwul.com☆24Updated this week
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Feb 9, 2024Updated 2 years ago
- ☆29May 22, 2024Updated last year
- Obtain GraphQL API schema despite disabled introspection!☆69May 27, 2021Updated 4 years ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆45Oct 16, 2024Updated last year
- A local-only GUI tool to analyze `.js.map` source map files.☆59Jul 12, 2025Updated 7 months ago
- ☆17Feb 4, 2026Updated 3 weeks ago
- jre8u20 gadget☆34May 23, 2021Updated 4 years ago
- 在5MB的内存和硬盘以内,实现FRPC的WebUI管理界面,抛弃臃肿的Java和MySQL☆12Feb 10, 2023Updated 3 years ago
- xrecon is a powerful web fingerprinting tool with CDN detection capabilities☆43Aug 14, 2024Updated last year
- Config files for my GitHub profile.☆10Dec 16, 2025Updated 2 months ago
- 加密壳☆35Mar 14, 2020Updated 5 years ago
- Jeopardy challenges for #ECSC2024 held in Turin, Italy from 8th to 11th October 2024☆42Oct 24, 2024Updated last year
- ☆32May 30, 2019Updated 6 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆45Jun 3, 2024Updated last year
- ☆40Aug 2, 2024Updated last year