dhmosfunk / simple-http-smuggler-generator
This tool is developed for burp suite practitioner certificate exam and HTTP Request Smuggling labs. The most important about this tool is TE.CL vulnerability exploitation and chunk size auto generator. Feel free to contribute and make a PR ;) Have fun exploiting these labs >.<
☆14Updated 2 years ago
Related projects: ⓘ
- Τhis repository contains all the necessary files for my GitHub pages. Feel free to fork and use it!☆1Updated 11 months ago
- ☆14Updated 2 years ago
- Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.☆43Updated 3 weeks ago
- This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"☆23Updated 6 years ago
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆46Updated last year
- ☆46Updated 2 years ago
- Zimbra Unauthenticated Remote Code Execution Exploit (CVE-2022-27925)☆56Updated 2 years ago
- CVE-2023-20052, information leak vulnerability in the DMG file parser of ClamAV☆27Updated last year
- PoC for CVE-2022-46169 - Unauthenticated RCE on Cacti <= 1.2.22☆28Updated last year
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆27Updated 2 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆22Updated last year
- Automate converting webshells into reverse shells.☆67Updated last month
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆64Updated 6 months ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆69Updated 2 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆34Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆62Updated 5 months ago
- ☆30Updated last year
- CVE-2023-38408 Remote Code Execution in OpenSSH's forwarded ssh-agent☆4Updated last year
- ☆41Updated last year
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆46Updated last year
- 「🚪」Linux Backdoor based on ICMP protocol☆55Updated 6 months ago
- ☆38Updated 9 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 8 months ago
- User enumeration and password spraying tool for testing Azure AD☆67Updated 2 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆45Updated 6 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆29Updated 7 months ago
- Striping CDN IPs from a list of IP Addresses☆72Updated 2 years ago
- ☆12Updated last year
- ☆23Updated 2 years ago