dhmosfunk / CVE-2023-25690-POCLinks
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
☆285Updated last year
Alternatives and similar repositories for CVE-2023-25690-POC
Users that are interested in CVE-2023-25690-POC are comparing it to the libraries listed below
Sorting:
- Enumerate / Dump Docker Registry☆179Updated last year
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆271Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆401Updated last week
- Bambdas collection for Burp Suite Professional and Community.☆373Updated this week
- ☆536Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆366Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆355Updated 3 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆374Updated this week
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆282Updated last year
- ImageMagick LFI PoC [CVE-2022-44268]☆53Updated last year
- Local File Inclusion discovery and exploitation tool☆318Updated 7 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆72Updated last year
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications☆228Updated 6 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆224Updated 10 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆134Updated 5 years ago
- Black box fuzzer for web applications☆432Updated last month
- ☆248Updated 4 years ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆892Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆176Updated last year
- A library for detecting known secrets across many web frameworks☆680Updated this week
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆225Updated 10 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆93Updated last month
- Subdomains analysis and generation tool. Reveal the hidden!☆243Updated 2 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆209Updated 4 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆217Updated 5 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆205Updated 6 months ago
- CVE-2024-4367 & CVE-2024-34342 Proof of Concept☆171Updated last year
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆170Updated last year
- Fuzz 401/403/404 pages for bypasses☆335Updated 8 months ago