PHP function tracker
☆242Feb 3, 2026Updated last month
Alternatives and similar repositories for fracker
Users that are interested in fracker are comparing it to the libraries listed below
Sorting:
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆584Sep 7, 2021Updated 4 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆14Dec 30, 2018Updated 7 years ago
- Some of my exploits.☆600Feb 25, 2021Updated 5 years ago
- PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)☆40Dec 12, 2018Updated 7 years ago
- [Linux] Two Privilege Escalation techniques abusing sudo token☆732Apr 14, 2019Updated 6 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆612Mar 4, 2021Updated 5 years ago
- procfs-based PHP sandbox bypass☆133Sep 19, 2018Updated 7 years ago
- Audit your PHP version for known CVEs and patches☆112Aug 20, 2025Updated 6 months ago
- PHPUnit Plugin for detecting Memory Leaks in code and tests☆500Feb 8, 2026Updated 3 weeks ago
- Bypassing disabled exec functions in PHP (c) CRLF☆406Oct 2, 2020Updated 5 years ago
- Limit time and memory consumption of individual calls☆69Nov 30, 2019Updated 6 years ago
- 🔪Browser logic vulnerabilities☆697Jan 23, 2021Updated 5 years ago
- 📟 Provides a composer package with constants for HTTP request methods.☆95Feb 23, 2026Updated last week
- Symbolic execution inspired PHP application scanner for code-path discovery☆33May 2, 2019Updated 6 years ago
- A PHP7 extension that can hook most functions/classes and parts of opcodes☆242Sep 17, 2021Updated 4 years ago
- ☆86Feb 28, 2017Updated 9 years ago
- cobalt strike 自启动脚本☆41Mar 19, 2017Updated 8 years ago
- CVE-2019-0604☆133Mar 22, 2019Updated 6 years ago
- PHP Runtime Vulnerability Detection☆480May 25, 2019Updated 6 years ago
- PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.☆3,756Sep 29, 2025Updated 5 months ago
- a simple tool to detect potential security threat in php code☆316Sep 9, 2024Updated last year
- ☆23Oct 11, 2019Updated 6 years ago
- Phantom Tap (PhanTap) - an ‘invisible’ network tap aimed at red teams☆621Oct 6, 2025Updated 5 months ago
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- A static byte code analyzer for Java deserialization gadget research☆252Apr 17, 2017Updated 8 years ago
- Cgiemail - Source Code Disclosure/LFI☆16Oct 21, 2016Updated 9 years ago
- LANGZI_SRC_安全巡航 是一款集成漏扫,验证,资产监控,自动复现并且生成结果表报的工具,实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。☆14Jul 7, 2019Updated 6 years ago
- Axis2 RPC Shell☆15Sep 10, 2015Updated 10 years ago
- DNS Rebinding Exploitation Framework☆492Apr 27, 2021Updated 4 years ago
- A Control Flow Graph implementation in PHP☆247Sep 20, 2025Updated 5 months ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆210Mar 10, 2019Updated 6 years ago
- Show unused composer dependencies by scanning your code☆1,656Feb 27, 2026Updated last week
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Pwn stuff.☆1,804May 31, 2022Updated 3 years ago
- source code of XCTF 2019 Final web task "tfboys"☆30Nov 21, 2022Updated 3 years ago
- Your alter ego object. Takes the best of object and array worlds.☆30May 2, 2019Updated 6 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Mar 27, 2017Updated 8 years ago
- Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.☆1,081Apr 5, 2022Updated 3 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆649Feb 21, 2024Updated 2 years ago