SorceryIE / cfor_exploitLinks
Exploit script for the CFOR vulnerability using Github's GraphQL API
☆19Updated last year
Alternatives and similar repositories for cfor_exploit
Users that are interested in cfor_exploit are comparing it to the libraries listed below
Sorting:
- A collection of utilities for building extensions using Burp's Montoya API☆51Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆37Updated last year
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated 2 years ago
- A tech enumeration toolkit focused on 404 Not found pages.☆25Updated 10 months ago
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆50Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 8 months ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆45Updated 2 weeks ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 11 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 8 months ago
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- ☆37Updated last month
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated 11 months ago
- Extracting OSINT Insights from 15TB of GitHub Event Logs☆68Updated last year
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆32Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆95Updated last year
- ☆25Updated 8 months ago
- TunnelX is a lightweight ingress tunneling tool designed to create a secure SOCKS5 proxy server for routing network traffic.☆53Updated 3 weeks ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆97Updated 5 months ago
- Looks for parameters in urls☆34Updated 9 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆97Updated last year
- ☆46Updated 6 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆33Updated last year
- ☆21Updated 5 months ago
- H&E- Burp Highlighter and Extractor☆18Updated 2 years ago
- Exploits Unauth Docker API☆41Updated 3 months ago