detectify / Varnish-H2-Request-Smuggling

Related projects ⓘ

Alternatives and complementary repositories for Varnish-H2-Request-Smuggling

• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 3 years ago
• defparam / haptyc
  ☆92Updated 3 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• pelaohxc / postMessageFinder
  ☆36Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 6 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• GovTech-CSG / ProxyAgent
  ☆64Updated 2 years ago
• mattiasgrenfeldt / bachelors-thesis-http-request-smuggling
  ☆69Updated 3 years ago
• omespino / gcs_instace_takeover
  ☆21Updated 3 months ago
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆33Updated 2 years ago
• emadshanab / Huge_DIR_wordlist
  ☆47Updated 3 years ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆49Updated last year
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 2 years ago
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 2 years ago
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆22Updated last month
• 1lastBr3ath / XSleaks
  Chrome extension to detect possible xsleaks
  ☆12Updated 5 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• federicodotta / Burp-Suite-Extender-Montoya-Course
  This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …
  ☆35Updated this week
• SafeBreach-Labs / HRS
  ☆49Updated 4 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆51Updated 2 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆30Updated last year
• GoSecure / request-smuggling-workshop
  ☆23Updated last year
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 3 years ago