beescuit / crosssiteshellLinks
A websocket-based reverse (javascript) shell for XSS attacks.
☆30Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- A better way of querying certificate transparency logs☆88Updated 5 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆67Updated last year
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆68Updated 2 years ago
- Session Hijacking Visual Exploitation☆205Updated last year
- 😛 Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project supp…☆19Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- ☆28Updated 6 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆53Updated 10 months ago
- ☆143Updated last year
- ☆90Updated last month
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)☆87Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆138Updated 9 months ago
- Some tips for Bug Bounty using LibreOffice☆48Updated 6 months ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 4 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- Enumerate / Dump Docker Registry☆180Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated last year
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆90Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- ☆58Updated last year
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particular…☆11Updated last year
- burp extension for brazilian stuff☆28Updated 2 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 9 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆65Updated 11 months ago
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆27Updated last week
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆127Updated 2 years ago
- ☆172Updated last month
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆98Updated 2 months ago
- Custom scan profiles for use with Burp Suite Pro☆144Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago