bgeesaman / subpath-exploit
Writeup of CVE-2017-1002101 with sample "exploit"/escape
☆35Updated 7 years ago
Alternatives and similar repositories for subpath-exploit:
Users that are interested in subpath-exploit are comparing it to the libraries listed below
- 🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.☆45Updated 7 years ago
- Proof of Concept exploit for Kubernetes CVE-2020-8559☆20Updated 4 years ago
- ☆25Updated 3 years ago
- WebBorer is a directory-enumeration tool written in Go.☆44Updated 2 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- A multi-threaded Golang scanner to identify Ruby endpoints vulnerable to CVE-2019-5418☆35Updated 6 years ago
- This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability☆54Updated 4 years ago
- Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java☆55Updated 8 years ago
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- Full TTY reverse shell over SSH☆58Updated 4 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- ☆1Updated 6 years ago
- Proof-of-concept CORS exploitation tool.☆35Updated 5 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- Python script to exploit CVE-2015-4852.☆30Updated 8 years ago
- DoS PoC's for SAP products☆52Updated 7 years ago
- Go static analysis tool that checks for security issues using an AST.☆28Updated 6 years ago
- The SSH Multiplex Backdoor Tool☆64Updated 5 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 5 years ago
- Another plugin for CRLF vulnerability detection☆26Updated 8 years ago
- ☆70Updated 7 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- ☆13Updated 2 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆43Updated last year
- Golang based web service to scan files with yara rules☆27Updated 7 years ago
- A tool to analyse JMX API security level.☆43Updated 10 years ago
- PoC for CVE-2018-1002105.☆223Updated 6 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆15Updated 8 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Updated 8 years ago