Warxim / vucsaLinks
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
☆98Updated 2 years ago
Alternatives and similar repositories for vucsa
Users that are interested in vucsa are comparing it to the libraries listed below
Sorting:
- A more useful CSRF PoC generator on Burp Suite☆86Updated 3 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆163Updated 2 years ago
- Burp Suite's extension to scan and crawl Single Page Applications☆105Updated 2 years ago
- spring4shell | CVE-2022-22965☆22Updated 3 years ago
- CVE-2022-41852 Proof of Concept (unofficial)☆75Updated 2 years ago
- nuclei scanner for proxyshell ( CVE-2021-34473 )☆45Updated 2 years ago
- Spring4Shell Burp Scanner☆71Updated 3 years ago
- Confluence Hardcoded Password POC☆15Updated 3 years ago
- CVE-2021-40346 integer overflow enables http smuggling☆33Updated 4 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆41Updated 4 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆56Updated 2 years ago
- Case for CVE-2022-30778☆23Updated 3 years ago
- WEB API fuzzing☆22Updated 5 months ago
- pFuzz helps us to bypass web application firewall by using different methods at the same time.☆161Updated 4 years ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- client-side prototype pullution vulnerability scanner☆46Updated 4 years ago
- XMLRPC - RCE in MovableTypePoC☆21Updated 3 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆115Updated 8 months ago
- ☆44Updated 2 months ago
- A testing Red Team Infrastructure created with Docker☆32Updated 3 years ago
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆118Updated 2 years ago
- D3Ext's Forward Shell☆120Updated last year
- ☆62Updated 3 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.☆21Updated 10 months ago
- [CVE-2020-14882] Oracle WebLogic Server Authenticated Remote Code Execution (RCE)☆13Updated 4 years ago
- Automatic Tools For Metabase Exploit Known As CVE-2023-38646☆27Updated 2 years ago
- Exploits targeting vBulletin.☆75Updated 2 years ago
- A penetration testing and vulnerability management application written using the powerful django framework.☆30Updated last year
- This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.☆118Updated 2 years ago