beescuit / crosssiteshellLinks
A websocket-based reverse (javascript) shell for XSS attacks.
☆30Updated 3 years ago
Alternatives and similar repositories for crosssiteshell
Users that are interested in crosssiteshell are comparing it to the libraries listed below
Sorting:
- A better way of querying certificate transparency logs☆87Updated 7 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆67Updated last year
- burp extension for brazilian stuff☆28Updated 2 years ago
- 😛 Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project supp…☆18Updated 2 years ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆67Updated 2 years ago
- Session Hijacking Visual Exploitation☆209Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆67Updated 6 months ago
- ☆28Updated 7 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆81Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆28Updated last month
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆138Updated 10 months ago
- An MS Sharepoint and Frontpage Auditing Tool☆56Updated 11 months ago
- ☆172Updated 2 months ago
- ☆92Updated 3 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆107Updated 4 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆100Updated 3 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆65Updated last year
- ☆144Updated last year
- ☆78Updated 4 months ago
- Custom scan profiles for use with Burp Suite Pro☆147Updated last year
- Adobe Experience Manager (AEM) hacking toolkit☆88Updated last month
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆75Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆107Updated last year
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆96Updated last year
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆80Updated 7 months ago
- his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulne…☆170Updated 7 months ago
- This tool is an efficient scanner designed to detect Cache Deception vulnerabilities in web servers. It automates the process of testing …☆34Updated 7 months ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆72Updated 2 years ago