appsecco / json-flash-csrf-poc

Related projects: ⓘ

• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆72Updated 3 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 5 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆112Updated 4 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆103Updated 4 years ago
• codewhitesec / ColdFusionPwn
  Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
  ☆96Updated last year
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆105Updated 5 years ago
• masahiro331 / CVE-2019-10758
  ☆111Updated 4 years ago
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆106Updated 4 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆171Updated 4 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• Bypass007 / vuln
  Record some Vulnerabilities
  ☆44Updated last year
• random-robbie / cve-2020-0688
  cve-2020-0688
  ☆161Updated 4 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• mpgn / CVE-2019-7238
  🐱‍💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱‍💻
  ☆149Updated 5 years ago
• hvqzao / burp-wildcard
  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
  ☆126Updated 3 years ago
• jas502n / gitlab-SSRF-redis-RCE
  GitLab 11.4.7 SSRF配合redis远程执行代码
  ☆123Updated 5 years ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 4 years ago
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆102Updated 4 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆137Updated 5 years ago
• PortSwigger / authz
  ☆104Updated 7 years ago
• NotSoSecure / docker_fetch
  Data extraction tool for Docker Registry API
  ☆123Updated 7 months ago
• hex0wn / learn-java-bug
  ☆72Updated 2 years ago
• kiks7 / rusty_joomla_rce
  Rusty Joomla RCE Exploit
  ☆70Updated last year
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆108Updated 5 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆160Updated last year
• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆149Updated 4 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆135Updated 6 years ago
• Bort-Millipede / WLT3Serial
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Updated 4 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆196Updated last year
• mzer0one / CVE-2020-7961-POC
  ☆116Updated 4 years ago