ambionics / lightyearLinks
lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
☆104Updated 3 months ago
Alternatives and similar repositories for lightyear
Users that are interested in lightyear are comparing it to the libraries listed below
Sorting:
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- A (small) web exploit framework☆96Updated last week
- Utility for creating ZipSlip archives☆78Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- CVE-2023-33733 reportlab RCE☆119Updated 2 years ago
- ☆23Updated 6 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆138Updated 5 years ago
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- jws2pubkey tool☆40Updated 3 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆52Updated this week
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆227Updated 11 months ago
- Deserialization payload generator for a variety of .NET formatters☆116Updated last month
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆19Updated last year
- Same Origin XSS challenge☆64Updated 3 years ago
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆17Updated last year
- PHP binary bugs advisory☆180Updated 3 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning☆71Updated 10 months ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- ☆40Updated 3 months ago
- ☆89Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- xortigate-cve-2023-27997☆64Updated last year
- jolokia-exploitation-toolkit☆299Updated 9 months ago
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- A list of weird comparison in SQL☆15Updated 3 years ago
- Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit☆82Updated 11 months ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆107Updated 4 months ago