lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
☆114Jun 23, 2025Updated last year
Alternatives and similar repositories for lightyear
Users that are interested in lightyear are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()☆505Sep 30, 2024Updated last year
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆242Oct 8, 2024Updated last year
- A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.☆332Jun 2, 2024Updated 2 years ago
- stealth userland kit that doesn't use sys_clone/sys_execve call☆35Apr 10, 2025Updated last year
- A (small) web exploit framework☆98Dec 26, 2025Updated 6 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆149Apr 11, 2026Updated 2 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆145Dec 23, 2025Updated 6 months ago
- ☆35Feb 10, 2023Updated 3 years ago
- xortigate-cve-2023-27997☆63Oct 12, 2023Updated 2 years ago
- Additional active scan checks for BURP☆28Oct 3, 2024Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- ☆29Jul 9, 2024Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆149Dec 9, 2024Updated last year
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆236Jul 24, 2025Updated 11 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆50Aug 31, 2025Updated 10 months ago
- A simple pickle assembler to make handcrafting pickle bytecode easier.☆15Apr 16, 2021Updated 5 years ago
- Proof of Concepts for unsafe deserialization in Ruby☆17Oct 17, 2024Updated last year
- ☆29Oct 18, 2022Updated 3 years ago
- This repository contains a number of insecure self-hosted applications that allows interested security engineers to test vulnerabilities …☆26Apr 30, 2025Updated last year
- ☆11Dec 19, 2024Updated last year
- ☆27Mar 11, 2025Updated last year
- Exploits targeting Symfony☆216Sep 19, 2024Updated last year
- Web Server that serves a single file and keeps the connection open until user releases it.☆75Nov 27, 2013Updated 12 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆350Jan 24, 2023Updated 3 years ago
- ☆32Jun 13, 2023Updated 3 years ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆224Jun 14, 2026Updated 2 weeks ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆92Mar 25, 2024Updated 2 years ago
- Deserialization payload generator for a variety of .NET formatters☆181Dec 2, 2025Updated 7 months ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆104Jan 31, 2025Updated last year
- Offensive Web is a documentation website about web security research, bypass and new exploitation techniques.☆34Feb 14, 2026Updated 4 months ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆807Dec 9, 2025Updated 6 months ago
- Find all libraries on cdn.js that pollute your prototype☆19Sep 1, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆26Dec 31, 2025Updated 6 months ago
- List DTDs and generate XXE payloads using those local DTDs.☆661Feb 21, 2024Updated 2 years ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆44Dec 16, 2024Updated last year
- CVE-2024-28995 POC Vulnerability Scanner☆14Jun 15, 2024Updated 2 years ago
- This repository is for the Testing ASP.NET ViewState with YSoNet (YSoSerial.NET) workshop.☆25Dec 17, 2025Updated 6 months ago
- ☆40Aug 2, 2024Updated last year
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆129Sep 12, 2025Updated 9 months ago