aadityapurani / NodeJS-Red-Team-Cheat-SheetLinks
NodeJS Red-Team Cheat Sheet
☆219Updated 6 years ago
Alternatives and similar repositories for NodeJS-Red-Team-Cheat-Sheet
Users that are interested in NodeJS-Red-Team-Cheat-Sheet are comparing it to the libraries listed below
Sorting:
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆182Updated 3 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆111Updated last year
- A python based blind SQL injection exploitation script☆137Updated 5 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- Python exploit for the CVE-2021-22204 vulnerability in Exiftool☆95Updated 4 years ago
- ☆165Updated 5 years ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆94Updated 6 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆270Updated 7 months ago
- Damn Vulnerable Thick Client App developed in C# .NET☆157Updated 2 years ago
- DNS rebinding toolkit☆253Updated 2 years ago
- A simple web app with a XXE vulnerability.☆228Updated 3 years ago
- A pentesting tool that dumps the source code from .git even when the directory traversal is disabled☆229Updated 3 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆108Updated last year
- Stuff done in preparation for AWAE course and OSWE certification☆152Updated 4 years ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆361Updated 3 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆262Updated 2 years ago
- ☆131Updated 4 years ago
- Security Testing Scripts for JWT☆316Updated 3 years ago
- Workshop given at Hack in Paris 2019☆123Updated 2 years ago
- Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution☆75Updated 4 years ago
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆134Updated 5 years ago
- Exploits targeting Symfony☆207Updated 11 months ago
- A tool which scrapes public github repositories for common naming conventions in variables, folders and files☆292Updated last year
- Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)☆172Updated 4 years ago
- Common Web Managers Fuzz Wordlists☆175Updated 5 months ago
- Using this script, you can enumerate Usernames and passwords of Nosql(mongodb) injecion vulnerable web applications.☆172Updated 5 years ago
- Preparation for OSWE☆44Updated 5 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆636Updated last year
- Wordlist to bruteforce for LFI☆125Updated 5 years ago