beescuit / crosssiteshellLinks
A websocket-based reverse (javascript) shell for XSS attacks.
☆30Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- A better way of querying certificate transparency logs☆88Updated 9 months ago
- 😛 Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project supp…☆18Updated 2 years ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆69Updated 3 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆70Updated 2 years ago
- burp extension for brazilian stuff☆28Updated 2 years ago
- quick script for mixing wordlists in a way that maintains order. ([1,2],[3,4],[5,6] -> [1,3,5,2,4,6])☆10Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆83Updated 2 years ago
- Session Hijacking Visual Exploitation☆209Updated last year
- ☆28Updated 10 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆41Updated 2 years ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆67Updated last year
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)☆88Updated 3 years ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆105Updated 5 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆57Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆126Updated 2 weeks ago
- Some tips for Bug Bounty using LibreOffice☆55Updated 10 months ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 8 months ago
- ☆93Updated 5 months ago
- ☆147Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆140Updated last year
- ☆81Updated 6 months ago
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆28Updated 3 months ago
- Enumerate / Dump Docker Registry☆180Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year
- ☆174Updated 5 months ago
- this script will help you find favicon hashes which you can use to shodan to get more details about an asset☆29Updated 9 months ago
- Adobe Experience Manager (AEM) hacking toolkit☆101Updated 3 months ago
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆12Updated last year
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆78Updated last year
- ☆55Updated 11 months ago