dhmosfunk / CVE-2023-25690-POC
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
☆276Updated 5 months ago
Alternatives and similar repositories for CVE-2023-25690-POC:
Users that are interested in CVE-2023-25690-POC are comparing it to the libraries listed below
- Enumerate / Dump Docker Registry☆168Updated 10 months ago
- Smart context-based SSRF vulnerability scanner.☆347Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆348Updated this week
- Local File Inclusion discovery and exploitation tool☆273Updated last month
- ☆235Updated 3 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆56Updated 9 months ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆264Updated 10 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 9 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated last year
- i will upload more templates here to share with the comunity.☆542Updated 10 months ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆793Updated last year
- Bambdas collection for Burp Suite Professional and Community.☆240Updated last week
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆272Updated 2 years ago
- ☆518Updated 7 months ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆217Updated 4 months ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆351Updated last year
- Useful "Match and Replace" burpsuite rules☆342Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆136Updated last month
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆158Updated 11 months ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆200Updated last month
- Web dashboard for Interactsh client☆199Updated 2 months ago
- XSS payloads for bypassing WAF. This repository is updating continuously.☆230Updated 11 months ago
- CVE-2024-4367 & CVE-2024-34342 Proof of Concept☆151Updated 8 months ago
- Burpsuite plugin for Interact.sh☆210Updated 7 months ago
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆215Updated 5 months ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆188Updated 7 months ago
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆171Updated 5 months ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆203Updated 4 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆239Updated last year