ambionics / laravel-exploits
Exploit for CVE-2021-3129
☆264Updated 3 years ago
Related projects: ⓘ
- ☆354Updated this week
- Exploits targeting Symfony☆190Updated last year
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆110Updated 4 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated 11 months ago
- RCE exploit for dompdf☆175Updated 2 years ago
- CVE 2021-21315 PoC☆154Updated 3 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆294Updated 5 years ago
- ☆179Updated 10 months ago
- jolokia-exploitation-toolkit☆276Updated 5 months ago
- ☆159Updated last month
- Hidden parameters discovery suite☆220Updated last year
- RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1☆157Updated 3 years ago
- ☆203Updated 3 years ago
- PoC for CVE-2018-15133 (Laravel unserialize vulnerability)☆247Updated 6 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆159Updated 5 years ago
- Automated HTTP Request Repeating With Burp Suite☆63Updated last year
- Exploit for CVE-2021-3129☆63Updated 3 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆173Updated 2 years ago
- Common Web Managers Fuzz Wordlists☆170Updated 10 months ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆159Updated last year
- Grafana Unauthorized arbitrary file reading vulnerability☆350Updated last year
- A pentesting tool that dumps the source code from .git even when the directory traversal is disabled☆214Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆210Updated last week
- ☆277Updated 2 years ago
- this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.☆114Updated 2 years ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆184Updated 3 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆259Updated 3 months ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆443Updated 8 months ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆502Updated 7 months ago