Vozec / CVE-2023-7028
This repository presents a proof-of-concept of CVE-2023-7028
☆233Updated 8 months ago
Related projects: ⓘ
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆266Updated 3 weeks ago
- Enumerate / Dump Docker Registry☆156Updated 5 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆297Updated 4 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆134Updated 3 months ago
- ☆398Updated 2 months ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆245Updated 5 months ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆298Updated 2 months ago
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆312Updated 9 months ago
- Bambdas collection for Burp Suite Professional and Community.☆193Updated last month
- Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway a…☆258Updated 6 months ago
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆153Updated 2 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆242Updated 4 months ago
- reverse shell using curl☆443Updated 4 months ago
- Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection☆180Updated 2 weeks ago
- Local File Inclusion discovery and exploitation tool☆210Updated last month
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆185Updated 2 months ago
- PDF Files for Web Pentesting☆411Updated 3 months ago
- A script to automate privilege escalation with CVE-2023-22809 vulnerability☆147Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆342Updated last year
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆144Updated 6 months ago
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆212Updated last year
- JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…☆327Updated 2 weeks ago
- Session Hijacking Visual Exploitation☆189Updated 6 months ago
- Fuzz 401/403/404 pages for bypasses☆243Updated last month
- POC for CVE-2021-41091☆65Updated last year
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆218Updated 5 months ago
- CVE-2023-33733 reportlab RCE☆109Updated last year
- ☆95Updated 7 months ago
- ☆166Updated this week
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆318Updated this week