capture0x / SSTI-FINDER
This tool is designed to detect and identify Server-Side Template Injection (SSTI) vulnerabilities in web applications
☆8Updated last year
Alternatives and similar repositories for SSTI-FINDER:
Users that are interested in SSTI-FINDER are comparing it to the libraries listed below
- ☆13Updated last week
- F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.☆17Updated 2 years ago
- xdebug 2.5.5 RCE exploit☆30Updated 2 months ago
- hacking tools☆14Updated 2 years ago
- Automatic Mass Tool for check and exploiting vulnerability in CVE-2023-3076 - MStore API < 3.9.9 - Unauthenticated Privilege Escalation (…☆17Updated last year
- ☆13Updated 11 months ago
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Updated 9 months ago
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆15Updated 10 months ago
- Bxss Sniper: A web application penetration testing tool for Blind XSS detection☆19Updated last year
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated last year
- A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticat…☆8Updated 10 months ago
- Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: …☆9Updated last year
- Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs☆12Updated 2 years ago
- ☆14Updated last year
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆14Updated 10 months ago
- This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.☆15Updated 10 months ago
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆13Updated last year
- my mini collection of exploits and scripts for pentest☆11Updated 2 years ago
- Apache OfBiz Auth Bypass Scanner for CVE-2023-51467☆11Updated last year
- ☆24Updated last year
- a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.☆18Updated 2 months ago
- An Exploitation script developed to exploit the CVE-2023-4966 bleed citrix information disclosure vulnerability☆9Updated last year
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆17Updated 9 months ago
- Small python or powershell script to look for potential subdomain takeover vulnerabilities via vulnerable Alias.☆8Updated 3 years ago
- ☆13Updated last year
- A simple command line tool designed to explore the mechanics of dictionary attacks on the FTP protocol.☆20Updated 3 years ago
- Atlassian Confluence - Remote Code Execution☆10Updated last year
- A BurpSuite extension for vulnerability Scanning☆26Updated last year
- This repository contains the best fuzzing wordlist files☆29Updated 3 months ago
- CVE-2023-28121 - WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation [ Mass Add Admin User ]☆11Updated last year