Vozec / CVE-2023-7028

Related projects: ⓘ

• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆266Updated 3 weeks ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆156Updated 5 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆297Updated 4 months ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆134Updated 3 months ago
• waf-bypass-maker / waf-community-bypasses
  ☆398Updated 2 months ago
• danialhalo / SqliSniper
  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
  ☆245Updated 5 months ago
• 0xKayala / NucleiScanner
  NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications
  ☆298Updated 2 months ago
• devanshbatham / headerpwn
  A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
  ☆312Updated 9 months ago
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆193Updated last month
• rootcathacking / catspin
  Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway a…
  ☆258Updated 6 months ago
• Sn1r / Forbidden-Buster
  A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…
  ☆153Updated 2 weeks ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆242Updated 4 months ago
• irsl / curlshell
  reverse shell using curl
  ☆443Updated 4 months ago
• PortSwigger / bypass-bot-detection
  Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
  ☆180Updated 2 weeks ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆210Updated last month
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆185Updated 2 months ago
• luigigubello / PayloadsAllThePDFs
  PDF Files for Web Pentesting
  ☆411Updated 3 months ago
• n3m1sys / CVE-2023-22809-sudoedit-privesc
  A script to automate privilege escalation with CVE-2023-22809 vulnerability
  ☆147Updated last year
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆342Updated last year
• Chocapikk / CVE-2024-25600
  Unauthenticated Remote Code Execution – Bricks <= 1.9.6
  ☆144Updated 6 months ago
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆212Updated last year
• hoodoer / JS-Tap
  JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…
  ☆327Updated 2 weeks ago
• doyensec / Session-Hijacking-Visual-Exploitation
  Session Hijacking Visual Exploitation
  ☆189Updated 6 months ago
• intrudir / BypassFuzzer
  Fuzz 401/403/404 pages for bypasses
  ☆243Updated last month
• UncleJ4ck / CVE-2021-41091
  POC for CVE-2021-41091
  ☆65Updated last year
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆218Updated 5 months ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆109Updated last year
• binganao / CVE-2024-23897
  ☆95Updated 7 months ago
• coffinxp / pdFExploits
  ☆166Updated this week
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆318Updated this week