beescuit / crosssiteshellLinks
A websocket-based reverse (javascript) shell for XSS attacks.
☆29Updated 2 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- A better way of querying certificate transparency logs☆86Updated 5 months ago
- 😛 Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project supp…☆19Updated 2 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆68Updated last year
- ☆28Updated 5 months ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆66Updated 2 years ago
- Session Hijacking Visual Exploitation☆203Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆65Updated 4 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- burp extension for brazilian stuff☆27Updated last year
- ☆89Updated last month
- ☆142Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆94Updated last month
- An MS Sharepoint and Frontpage Auditing Tool☆52Updated 9 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆137Updated 8 months ago
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)☆87Updated 2 years ago
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particular…☆11Updated last year
- Enumerate / Dump Docker Registry☆180Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆96Updated 2 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- Some tips for Bug Bounty using LibreOffice☆48Updated 6 months ago
- ☆172Updated 3 weeks ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆92Updated last year
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆66Updated 10 months ago
- 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials☆101Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 8 months ago
- ☆79Updated last year
- ☆74Updated 2 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Custom scan profiles for use with Burp Suite Pro☆144Updated last year