bao7uo / RAU_crypto
Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)
☆167Updated 4 years ago
Related projects: ⓘ
- Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)☆164Updated 3 years ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆342Updated 2 years ago
- Exfiltrate blind remote code execution output over DNS via Burp Collaborator.☆247Updated 2 years ago
- PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)☆215Updated 3 years ago
- ☆233Updated 5 years ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆173Updated 2 years ago
- ☆277Updated 2 years ago
- ☆127Updated 6 years ago
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆197Updated last year
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- CVE-2018-13379☆250Updated 5 years ago
- cve-2020-0688☆322Updated last year
- SQL Server Reporting Services(CVE-2020-0618)中的RCE☆198Updated 4 years ago
- Data extraction tool for Docker Registry API☆123Updated 7 months ago
- XXE Out of Band Server.☆168Updated last year
- Changes for Visual Studio 2013☆112Updated 9 years ago
- ☆126Updated 2 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆171Updated 4 years ago
- Everything you need about Burp Extension Generation☆151Updated last year
- A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.☆97Updated 6 years ago
- Updating MS08-067 Python exploit script☆103Updated 6 years ago
- ☆214Updated last year
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆81Updated 6 years ago
- ☆203Updated 3 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆90Updated 2 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆252Updated last year
- Exploit for Drupal 7 <= 7.57 CVE-2018-7600☆124Updated 6 years ago
- MOGWAI LABS JMX exploitation toolkit☆196Updated last year
- ☆84Updated 7 months ago
- ☆289Updated 2 months ago