Tris0n / CVE-2023-32571-POC

Related projects ⓘ

Alternatives and complementary repositories for CVE-2023-32571-POC

• oppsec / pwnfaces
  😛 Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)
  ☆19Updated last year
• c3l3si4n / crtdumper
  crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…
  ☆18Updated 4 months ago
• caioluders / LostAndFound
  ☆18Updated 6 months ago
• beescuit / crosssiteshell
  A websocket-based reverse (javascript) shell for XSS attacks.
  ☆29Updated 2 years ago
• amirnsahmad / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆13Updated 2 years ago
• c3l3si4n / godeclutter
  Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.
  ☆48Updated last year
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆39Updated 10 months ago
• oppsec / WSOB
  😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
  ☆26Updated last year
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆61Updated 2 years ago
• c3l3si4n / thankunext
  Easily gather all routes related to a NextJs application through parsing of _buildManifest.js
  ☆52Updated last year
• Icare1337 / LibreOffice_Tips_Bug_Bounty
  Some tips for Bug Bounty using LibreOffice
  ☆32Updated 3 months ago
• viniciuspereiras / bingo
  Tool to start a python http server in a simple way
  ☆10Updated 2 years ago
• synacktiv / laravel_cookie_killer
  ☆24Updated 2 years ago
• 0xDEF1NE / subtrace
  ☆13Updated last month
• ferreiraklet / icmp_reverse_shell
  ☆43Updated last year
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆76Updated last year
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• projectmonke / typewriter
  ☆13Updated last year
• rodolfomarianocy / asnpepper
  ASNPepper - Recon in ASN - Extracting CIDR's - Fast and efficient scanning
  ☆15Updated last week
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆68Updated 10 months ago
• projectmonke / shortnameguesser
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆34Updated last year
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 2 years ago
• AmoloHT / CVE-2022-33891
  「💥」CVE-2022-33891 - Apache Spark Command Injection
  ☆27Updated 2 years ago
• c3l3si4n / pwnkit
  PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.
  ☆25Updated 2 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆35Updated last year
• mishmashclone / ManhNho-AWAE-OSWE
  https://github.com/ManhNho/AWAE-OSWE
  ☆11Updated 4 years ago
• HernanRodriguez1 / ScanReflectedXSS
  ☆43Updated last year
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆52Updated 2 weeks ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆35Updated 2 years ago
• pimps / pdf-NTLMLeaker
  This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
  ☆23Updated 6 years ago