breaktoprotect / CVE-2017-12615

Related projects: ⓘ

• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆171Updated 4 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆137Updated 5 years ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆185Updated 4 years ago
• milo2012 / CVE-2018-13382
  CVE-2018-13382
  ☆145Updated 5 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆112Updated 4 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆172Updated 5 years ago
• NetSPI / BurpExtractor
  A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
  ☆90Updated 2 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆160Updated last year
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆104Updated 5 years ago
• g0rx / CVE-2018-7600-Drupal-RCE
  CVE-2018-7600 Drupal RCE
  ☆115Updated 6 years ago
• duc-nt / CVE-2020-6287-exploit
  PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Or…
  ☆95Updated 4 years ago
• mzer0one / CVE-2020-7961-POC
  ☆116Updated 4 years ago
• euphrat1ca / CVE-2020-0618
  SQL Server Reporting Services(CVE-2020-0618)中的RCE
  ☆198Updated 4 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆251Updated 2 years ago
• WebBreacher / tilde_enum
  Takes a URL and checks the system for the tilde enum vuln and then find the files.
  ☆168Updated 5 years ago
• petercunha / jenkins-rce
  Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
  ☆294Updated 5 years ago
• NetSPI / Burp-Extensions
  Central Repo for Burp extensions
  ☆146Updated 2 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆104Updated 5 years ago
• c0mmand3rOpSec / CVE-2017-10271
  WebLogic Exploit
  ☆141Updated 6 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆136Updated 3 years ago
• jas502n / CVE-2019-12384
  Jackson Rce For CVE-2019-12384
  ☆97Updated 5 years ago
• milo2012 / CVE-2018-13379
  CVE-2018-13379
  ☆250Updated 5 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 8 months ago
• allyshka / vhostbrute
  Virtual host bruteforcer
  ☆109Updated 7 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆168Updated last year
• theMiddleBlue / CVE-2019-11043
  (PoC) Python version of CVE-2019-11043 exploit by neex
  ☆143Updated 4 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆108Updated 5 years ago