boku7 / tailorMS-rXSS-Keylogger
Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 allows remote attackers to harvest keys pressed via unauthenticated victim clicking malicious URL and typing.
☆24Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for tailorMS-rXSS-Keylogger
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Stock Management System v1.0 al…☆21Updated 3 years ago
- Noob Penetration tester☆10Updated 6 months ago
- ☆15Updated last year
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆16Updated 3 years ago
- Automate Auxiliary Module in Metasploit☆20Updated 3 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- Burp Suite extension for extracting metadata from files☆19Updated 3 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated last year
- Pentesting notes☆17Updated last year
- FETB : Take URL of File For Analysis using File + ExifTool + Binwalk Commands☆22Updated 3 years ago
- Wordlist generator☆16Updated 4 years ago
- An advanced multithreaded admin panel finder written in python.☆13Updated 4 years ago
- Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.☆22Updated 10 months ago
- A basic proxylogon scanner☆27Updated 3 years ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆18Updated last year
- ☆22Updated last year
- GetSimple CMS Custom JS Plugin Exploit RCE Chain☆11Updated last year
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated last year
- A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool☆14Updated last year
- ☆16Updated 3 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Updated 2 years ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆10Updated 8 years ago
- Serving files with conditions, serverside keying and more.☆18Updated 2 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago