SorceryIE / cfor_exploitLinks
Exploit script for the CFOR vulnerability using Github's GraphQL API
☆19Updated 11 months ago
Alternatives and similar repositories for cfor_exploit
Users that are interested in cfor_exploit are comparing it to the libraries listed below
Sorting:
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated 2 years ago
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF☆44Updated last month
- ☆19Updated 4 months ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆37Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated 10 months ago
- Mobile Helper Framework (mhf) is a tool that automates the process of identifying the framework/technology used to create a mobile applic…☆22Updated 11 months ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆19Updated 2 years ago
- ☆37Updated last month
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 7 months ago
- The largest collection of wordlists in yaml for bug bounty tools☆35Updated last year
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆21Updated last year
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆67Updated last month
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 7 months ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆29Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆51Updated last year
- H&E- Burp Highlighter and Extractor☆18Updated 2 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- CTF challenges WriteUp☆14Updated 3 years ago
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆50Updated last year
- ☆21Updated last month
- ☆25Updated 8 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆59Updated 2 years ago
- CVE-2024-23897 jenkins-cli☆15Updated last year
- convert secret patterns to gf compatible.☆39Updated 2 years ago
- ☆12Updated 6 months ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 4 years ago
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆32Updated last year
- PoC repository for CVE-2023-29007☆33Updated 2 years ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 10 months ago