cnotin / RazorVulnerableApp
DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SSTI). For training and testing purposes.
☆27Updated 4 years ago
Alternatives and similar repositories for RazorVulnerableApp:
Users that are interested in RazorVulnerableApp are comparing it to the libraries listed below
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆37Updated 5 years ago
- ☆35Updated 2 months ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Updated 3 years ago
- Same Origin XSS challenge☆56Updated 2 years ago
- A burp-suite plugin that extract all parameter names from in-scope requests☆29Updated 3 years ago
- Query various sources for CVE proof-of-concepts☆51Updated last year
- Server and avi file to exploit FFmpeg HLS parse☆22Updated 5 years ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆30Updated 5 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆76Updated 4 years ago
- ☆27Updated 3 years ago
- Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data☆26Updated 3 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated 10 months ago
- ☆46Updated 3 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆40Updated 3 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆43Updated 3 years ago
- A Burp extension to show the Collaborator client in a tab☆23Updated 2 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆47Updated 4 years ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 4 years ago
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Writeup of CVE-2020-15906☆47Updated 4 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- ☆60Updated 6 years ago
- Tools, Resources & Helpful Tips☆14Updated 2 years ago
- PoC for CVE-2021-45897☆18Updated 3 years ago
- Utility to pull disclosed vulnerabilities from HackerOne private programs - for personal use only☆13Updated 3 years ago
- public dns server list for dmut project☆18Updated last year
- ☆15Updated 4 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆55Updated 5 years ago
- A extension for collecting parameters☆25Updated 4 years ago