Alternatives and similar repositories for Drupalgeddon2:

Users that are interested in Drupalgeddon2 are comparing it to the libraries listed below

• immunIT / drupwn
  Drupal enumeration & exploitation tool
  ☆601Updated 4 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆532Updated 4 years ago
• a2u / CVE-2018-7600
  💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002
  ☆351Updated 6 years ago
• SamJoan / droopescan
  A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
  ☆1,328Updated last year
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆541Updated 2 years ago
• mthbernardes / rsg
  ReverShellGenerator - A tool to generate various ways to do a reverse shell
  ☆561Updated 11 months ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆547Updated 2 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,074Updated 4 months ago
• anantshri / svn-extractor
  simple script to extract all web resources by means of .SVN folder exposed over network.
  ☆463Updated last year
• mazen160 / server-status_PWN
  A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…
  ☆435Updated 3 years ago
• 1N3 / PrivEsc
  A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
  ☆976Updated 7 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆488Updated last year
• OsandaMalith / LFiFreak
  A unique automated LFi Exploiter with Bind/Reverse Shells
  ☆278Updated 9 years ago
• Rhynorater / CVE-2018-15473-Exploit
  Exploit written in Python for CVE-2018-15473 with threading and export formats
  ☆523Updated 9 months ago
• kacperszurek / exploits
  ☆265Updated 6 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆726Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆405Updated 2 years ago
• nettitude / xss_payloads
  Exploitation for XSS
  ☆714Updated 3 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆332Updated 3 years ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,804Updated 3 years ago
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆353Updated last month
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated 2 years ago
• PortSwigger / collaborator-everywhere
  A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…
  ☆433Updated 2 weeks ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆331Updated 5 years ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆645Updated 6 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆625Updated last year
• Bo0oM / WAF-bypass-Cheat-Sheet
  Another way to bypass WAF Cheat Sheet (draft)
  ☆422Updated 6 years ago
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆613Updated 2 months ago
• cfreal / exploits
  Some of my exploits.
  ☆579Updated 4 years ago