boiledsteak / EJS-Exploit
Remote Code Execution EJS Web Applications using express-fileupload
☆11Updated 3 years ago
Related projects: ⓘ
- A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Writte…☆25Updated 2 years ago
- Hack Windows with FUD backdoor/payload, Escalates LINUX privileges, Devastate Linux, Tunnel forwarding☆12Updated 3 years ago
- Blinder is a tool that will help you simplify the exploitation of blind SQL injection☆10Updated 2 years ago
- Small python or powershell script to look for potential subdomain takeover vulnerabilities via vulnerable Alias.☆8Updated 3 years ago
- All Shell In One. Generate Reverse Shells and/or generate single code that runs all the payloads.☆11Updated 3 years ago
- This page should help you with the recon for security issues.☆21Updated last year
- A simple command line tool designed to explore the mechanics of dictionary attacks on the FTP protocol.☆20Updated 3 years ago
- Convert domain lists to resolved IP without duplicated, useful for strong large recon, and Bug Bounty☆12Updated 3 years ago
- ☆12Updated this week
- ☆15Updated this week
- This a Complete tool contained box for Capture The Flag competition. Mostly I have inserted all the necessary tools. Some of the people h…☆11Updated 2 years ago
- Spring cloud gateway code injection : CVE-2022-22947☆10Updated 2 years ago
- XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnera…☆23Updated 4 months ago
- Fast DNS history enumeration tool for network and OSINT investigations☆16Updated 3 years ago
- Auto scanning tool that will help you during playing on HackTheBox, TryHackMe...etc☆17Updated last year
- DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, password hashes. It also allow member of SOC &…☆37Updated 2 years ago
- Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engageme…☆19Updated 2 years ago
- Burpsuite Plugin to bypass strict RePlay protection☆12Updated 3 years ago
- ☆20Updated this week
- Site fast fuzzing with chorme extension.☆25Updated 2 years ago
- Web based favicon recon tool made using streamlit.☆10Updated 2 years ago
- This tool is designed for those situations during a pentest where you have upload access to a webserver that’s running PHP. Upload this …☆14Updated last month
- Yet another powerful payload encoder/decoder☆12Updated 2 years ago
- ☆13Updated last year
- Shell hunter for AF☆34Updated 2 years ago
- Subdomain Scan (knockpy) in Python3☆11Updated 3 years ago
- Web crawler and downloader based on GNU Wget.☆12Updated last year
- InfiniteWP Client < 1.9.4.5 - Authentication Bypass☆20Updated 3 years ago
- DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by l…☆15Updated 10 months ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Updated 2 years ago