ambionics / scalpel

Related projects ⓘ

Alternatives and complementary repositories for scalpel

• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆60Updated 2 weeks ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆86Updated 7 months ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆85Updated 9 months ago
• doyensec / Prototype-Pollution-Gadgets-Finder
  ☆80Updated 6 months ago
• cfreal / ten
  A (small) web exploit framework
  ☆81Updated last month
• PortSwigger / server-side-prototype-pollution
  ☆30Updated last year
• fcavallarin / burp-dom-scanner
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆99Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆65Updated 8 months ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 6 years ago
• PortSwigger / splitting-the-email-atom
  ☆65Updated last month
• federicodotta / Burp-Suite-Extender-Montoya-Course
  This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …
  ☆35Updated this week
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆49Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆84Updated 5 months ago
• Rhynorater / rebindMultiA
  ☆56Updated last year
• karthikuj / cve-2022-42889-text4shell-docker
  Dockerized POC for CVE-2022-42889 Text4Shell
  ☆75Updated 2 years ago
• Mike-n1 / tips
  ☆24Updated 5 months ago
• sw33tLie / uff
  unleashed ffuf
  ☆96Updated 4 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆107Updated 4 months ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆60Updated last year
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆281Updated 8 months ago
• synacktiv / laravel_cookie_killer
  ☆24Updated 2 years ago
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆174Updated last year
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆121Updated 2 years ago
• yoryio / CVE-2024-20767
  Exploit for CVE-2024-20767 - Adobe ColdFusion
  ☆33Updated 7 months ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆25Updated 9 months ago
• synacktiv / CVE-2024-45409
  Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit
  ☆73Updated last month
• p0dalirius / CVE-2022-36446-Webmin-Software-Package-Updates-RCE
  A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.
  ☆110Updated 2 years ago
• synfron / ReshaperForBurp
  Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules
  ☆92Updated 2 weeks ago