ambionics / phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
☆3,229Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for phpggc
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,784Updated 6 months ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆2,867Updated last year
- Automatic SSRF fuzzer and exploitation tool☆2,986Updated 4 months ago
- Pwn stuff.☆1,756Updated 2 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,343Updated 3 weeks ago
- A python script that finds endpoints in JavaScript files☆3,717Updated 6 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆1,897Updated last week
- HTTP parameter discovery suite.☆5,254Updated this week
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,681Updated 3 years ago
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.☆1,492Updated this week
- Rip web accessible (distributed) version control systems: SVN/GIT/HG...☆1,701Updated 3 months ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,419Updated 4 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,537Updated 4 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,696Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆2,988Updated 3 weeks ago
- Linux privilege escalation auditing tool☆5,635Updated 8 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆7,765Updated 7 months ago
- Monitor linux processes without root permissions☆4,952Updated last year
- Webshell && Backdoor Collection☆1,820Updated 4 years ago
- HackBar plugin for Burpsuite☆1,535Updated 3 years ago
- A Tool for Domain Flyovers☆5,640Updated 2 years ago
- linuxprivchecker.py -- a Linux Privilege Escalation Check Script☆1,564Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,679Updated 6 months ago
- File upload vulnerability scanner and exploitation tool.☆3,045Updated last year
- The cheat sheet about Java Deserialization vulnerabilities☆3,031Updated last year
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆3,963Updated last year
- Next-Generation Linux Kernel Exploit Suggester☆1,857Updated last year
- Notes about attacking Jenkins servers☆1,961Updated 3 months ago
- The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.☆3,025Updated 4 years ago
- Web application fuzzer☆5,957Updated 2 months ago