dhmosfunk / CVE-2023-25690-POCLinks
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
☆284Updated last year
Alternatives and similar repositories for CVE-2023-25690-POC
Users that are interested in CVE-2023-25690-POC are comparing it to the libraries listed below
Sorting:
- Enumerate / Dump Docker Registry☆180Updated last year
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆274Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆418Updated last week
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆141Updated 6 years ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆287Updated last year
- Bambdas collection for Burp Suite Professional and Community.☆421Updated 3 weeks ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆229Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆369Updated 2 years ago
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆217Updated 7 months ago
- ImageMagick LFI PoC [CVE-2022-44268]☆53Updated 2 years ago
- Local File Inclusion discovery and exploitation tool☆330Updated 10 months ago
- ☆542Updated last year
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆229Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆102Updated 3 months ago
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)☆238Updated last week
- Smart context-based SSRF vulnerability scanner.☆360Updated 3 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆389Updated this week
- A collection of Server-Side Prototype Pollution gadgets and exploits☆214Updated 9 months ago
- Deriving RSA public keys from message-signature pairs☆355Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆308Updated last year
- PDF Files for Pentesting☆662Updated last year
- ☆576Updated 3 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆180Updated last year
- XSS payloads for bypassing WAF. This repository is updating continuously.☆255Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆78Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆930Updated 2 years ago
- ☆24Updated 4 years ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆127Updated 2 years ago
- CVE-2024-4367 & CVE-2024-34342 Proof of Concept☆180Updated last year
- This repository presents a proof-of-concept of CVE-2023-7028☆242Updated last year