ambionics / lightyearLinks
lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
☆101Updated last month
Alternatives and similar repositories for lightyear
Users that are interested in lightyear are comparing it to the libraries listed below
Sorting:
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- A (small) web exploit framework☆92Updated last week
- CVE-2023-33733 reportlab RCE☆119Updated last year
- ☆21Updated 4 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆131Updated 5 years ago
- Repository to store exploits created by Assetnotes Security Research team☆180Updated last year
- Same Origin XSS challenge☆61Updated 3 years ago
- oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning☆70Updated 7 months ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆51Updated 3 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- PHP binary bugs advisory☆180Updated 3 years ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆222Updated 9 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- jws2pubkey tool☆40Updated last month
- A list of weird comparison in SQL☆15Updated 3 years ago
- ☆37Updated last month
- ☆166Updated 3 years ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆82Updated last month
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆17Updated 10 months ago
- Deserialization payload generator for a variety of .NET formatters☆74Updated last week
- LFI to RCE via phpinfo() assistance or via controlled log file☆70Updated 2 years ago
- ☆88Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆96Updated last year
- jolokia-exploitation-toolkit☆298Updated 7 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆29Updated last year
- A python script to merge multiple jar files for easier debugging via JD-Eclipse☆61Updated 2 years ago
- ☆27Updated 2 years ago
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆18Updated last year