detectify / vulnerable-nginxLinks
An intentionally vulnerable NGINX setup
☆242Updated 4 years ago
Alternatives and similar repositories for vulnerable-nginx
Users that are interested in vulnerable-nginx are comparing it to the libraries listed below
Sorting:
- ☆553Updated 6 months ago
- ☆182Updated 4 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆397Updated 3 years ago
- Web dashboard for Interactsh client☆233Updated 3 weeks ago
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆376Updated last year
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆210Updated 2 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆174Updated 11 months ago
- Exploits targeting Symfony☆208Updated last year
- A tool to test security of json web token☆279Updated 4 years ago
- Content-Type Research☆639Updated 3 months ago
- navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities☆73Updated 2 years ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆54Updated 3 weeks ago
- DNS rebinding toolkit☆255Updated 2 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆757Updated 3 years ago
- Bypass CDN and WAF restrictions using CDN re-fronting.☆257Updated 3 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆422Updated last month
- Burpsuite plugin for Interact.sh☆227Updated last year
- A proof-of-concept WordPress plugin fuzzer☆193Updated last year
- Predict Mongo ObjectIds☆145Updated 7 years ago
- Http request smuggling vulnerability scanner☆229Updated 3 years ago
- ☆169Updated 4 years ago
- XS-Leaks Wiki☆169Updated 4 months ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆43Updated 2 years ago
- Client Side Prototype Pollution Scanner☆521Updated 3 years ago
- Awesome information for WebSockets security research☆276Updated 3 years ago
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…☆343Updated 4 years ago
- Automated learning of regexes for DNS discovery☆372Updated 2 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆263Updated last year
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago