ambionics / lightyearLinks
lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
☆90Updated 6 months ago
Alternatives and similar repositories for lightyear
Users that are interested in lightyear are comparing it to the libraries listed below
Sorting:
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆60Updated last year
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- ☆18Updated 2 months ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆48Updated last month
- A (small) web exploit framework☆90Updated 2 months ago
- Same Origin XSS challenge☆61Updated 3 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- CVE-2023-33733 reportlab RCE☆117Updated last year
- jolokia-exploitation-toolkit☆290Updated 5 months ago
- ☆27Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆94Updated 11 months ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆66Updated 2 years ago
- ☆36Updated 2 years ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆129Updated 5 years ago
- jws2pubkey tool☆38Updated 11 months ago
- ☆88Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- ☆166Updated 3 years ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆17Updated 8 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 11 months ago
- PHP binary bugs advisory☆180Updated 2 years ago
- Finding Java gadget chains with CodeQL☆171Updated 4 months ago
- oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning☆68Updated 5 months ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Repository to store exploits created by Assetnotes Security Research team☆178Updated last year
- A python script to merge multiple jar files for easier debugging via JD-Eclipse☆61Updated 2 years ago