codewhitesec / HttpRemotingObjRefLeakLinks
Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
☆89Updated last year
Alternatives and similar repositories for HttpRemotingObjRefLeak
Users that are interested in HttpRemotingObjRefLeak are comparing it to the libraries listed below
Sorting:
- Deserialization payload generator for a variety of .NET formatters☆116Updated last month
- Utility for creating ZipSlip archives☆78Updated 2 years ago
- CVE-2023-33733 reportlab RCE☆119Updated 2 years ago
- Authentication Bypass in GoAnywhere MFT☆64Updated last year
- Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit☆82Updated 11 months ago
- ☆40Updated 3 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- ☆27Updated last year
- CVE-2025-30406 ViewState Exploit PoC☆77Updated 2 months ago
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆34Updated 9 months ago
- ☆89Updated last year
- CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.☆79Updated last year
- This extension enhances Burp Suite by adding several UI and functional features, making it more user-friendly.☆71Updated 9 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- Golden collection of weak passwords☆67Updated 9 months ago
- ☆23Updated 6 months ago
- A tool for identifying and exploiting vulnerable Viewstate implementations in ASP.NET☆54Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆29Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆60Updated 2 years ago
- ☆39Updated 2 years ago
- ☆68Updated 8 months ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆115Updated 8 months ago
- Proof-of-concept exploit for CVE-2024-25153.☆42Updated last year
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- The purpose of this repo is to share my research☆14Updated 5 months ago
- CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.☆48Updated 2 years ago
- Ivanti EPM SQL Injection Remote Code Execution Vulnerability☆25Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆105Updated 2 years ago
- Exploit for CVE-2024-27198 - TeamCity Server☆34Updated 9 months ago