ambionics / phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
☆3,249Updated last month
Related projects ⓘ
Alternatives and complementary repositories for phpggc
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆2,875Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,797Updated 7 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,001Updated 5 months ago
- Pwn stuff.☆1,757Updated 2 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,354Updated last month
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,541Updated 4 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆1,906Updated 3 weeks ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,699Updated 2 years ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,423Updated 4 years ago
- A python script that finds endpoints in JavaScript files☆3,729Updated 7 months ago
- Deserialization payload generator for a variety of .NET formatters☆3,237Updated 5 months ago
- File upload vulnerability scanner and exploitation tool.☆3,053Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,686Updated 3 years ago
- Rip web accessible (distributed) version control systems: SVN/GIT/HG...☆1,706Updated 4 months ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,680Updated 6 months ago
- Linux privilege escalation auditing tool☆5,665Updated 9 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,333Updated 6 months ago
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.☆1,500Updated 2 weeks ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,301Updated last month
- The cheat sheet about Java Deserialization vulnerabilities☆3,034Updated last year
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆976Updated 3 years ago
- linuxprivchecker.py -- a Linux Privilege Escalation Check Script☆1,571Updated 2 years ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆3,971Updated last year
- List of XSS Vectors/Payloads☆1,191Updated last week
- HackBar plugin for Burpsuite☆1,541Updated 3 years ago
- A curated list of amazingly awesome Burp Extensions☆3,003Updated this week
- HTTP parameter discovery suite.☆5,283Updated 2 weeks ago
- A Tool for Domain Flyovers☆5,647Updated 2 years ago
- Weaponized web shell☆3,205Updated last month
- Monitor linux processes without root permissions☆4,965Updated last year