cnotin / RazorVulnerableAppLinks
DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SSTI). For training and testing purposes.
☆28Updated 5 years ago
Alternatives and similar repositories for RazorVulnerableApp
Users that are interested in RazorVulnerableApp are comparing it to the libraries listed below
Sorting:
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Same Origin XSS challenge☆62Updated 3 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆56Updated 5 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- ☆60Updated 6 years ago
- Practice hacking JWT tokens☆115Updated 2 years ago
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆38Updated 3 months ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆30Updated 5 years ago
- Burp Bounty profiles☆83Updated 3 years ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- Public Disclosures☆91Updated 3 years ago
- PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509☆59Updated 4 years ago
- CVE 2021-21315 PoC☆157Updated 4 years ago
- Generating payloads to reverse shell in different contexts of java.☆49Updated 3 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆42Updated 3 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆48Updated 4 years ago
- ☆56Updated 4 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆72Updated 2 months ago
- PoC for CVE-2021-45897☆18Updated 3 years ago
- Compiles a list of major CDN and WAF subnets.☆66Updated this week
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆107Updated 5 years ago
- ☆27Updated 3 years ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- ☆17Updated 2 years ago
- Exploits developed by Mikael Kall☆47Updated 2 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆44Updated 3 years ago
- ☆55Updated 2 years ago
- A Burp extension to show the Collaborator client in a tab☆24Updated 2 years ago
- ☆33Updated 3 years ago