beescuit / crosssiteshellLinks
A websocket-based reverse (javascript) shell for XSS attacks.
β29Updated 2 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- π Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project suppβ¦β18Updated 2 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticalsβ¦β66Updated last year
- A better way of querying certificate transparency logsβ86Updated 2 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.β77Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticalβ¦β40Updated last year
- β45Updated 2 years ago
- β7Updated last year
- burp extension for brazilian stuffβ27Updated last year
- This extension is meticulously crafted to safeguard users from phishing attempts that replicate the Office365 login interface, particularβ¦β11Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.��β51Updated last week
- Colored Cat is a syntax highlighter file reader.β16Updated 11 months ago
- Pipe nmap verbose output to a usable format for httpx or host:port notation.β17Updated 2 years ago
- Wolfy AV Bypasserβ28Updated 2 years ago
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)β87Updated 2 years ago
- β25Updated 3 months ago
- Automate converting webshells into reverse shells.β69Updated 2 months ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.jsβ64Updated 2 years ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names froβ¦β27Updated 11 months ago
- β69Updated 2 months ago
- Repository with quick triggers to help during Pentest in an Active Directory environment.β44Updated 7 months ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpointsβ11Updated 11 months ago
- β55Updated 2 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)β76Updated 11 months ago
- β58Updated last year
- β48Updated last month
- BurpSuite extension to convert requests into bcheck scriptsβ32Updated last year
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.β82Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.β44Updated last year
- β85Updated 4 months ago
- This tool is an efficient scanner designed to detect Cache Deception vulnerabilities in web servers. It automates the process of testing β¦β29Updated 2 months ago