esmog / nodexp

Related projects: ⓘ

• 0blio / fileGPS
  A tool that help you to guess how your shell was renamed after the server-side script of the file uploader saved it
  ☆64Updated 3 years ago
• devploit / put2win
  Script to automate PUT HTTP method exploitation to get shell
  ☆124Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆96Updated 2 years ago
• baguswiratmaadi / reverie
  Automated Pentest Tools Designed For Parrot Linux
  ☆84Updated 5 years ago
• RUB-NDS / Metadata-Attacker
  A tool to generate media files with malicious metadata
  ☆123Updated 5 years ago
• Hack-Hut / CrabStick
  Automatic remote/local file inclusion vulnerability analysis and exploit tool
  ☆60Updated 5 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 9 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆58Updated 5 years ago
• N1ckDunn / Exploitivator
  Automate Metasploit scanning and exploitation
  ☆108Updated this week
• rastating / xss-chef
  A web application for generating custom XSS payloads
  ☆75Updated 4 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆121Updated 7 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆102Updated 7 years ago
• YasserGersy / sub6
  ☆61Updated this week
• rudSarkar / crlf-injector
  A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…
  ☆46Updated 2 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆141Updated 5 years ago
• cldrn / davtest
  davtest (improved)- Exploits WebDAV folders
  ☆101Updated last year
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆136Updated 3 years ago
• 1N3 / Exploits
  Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity
  ☆196Updated 2 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 6 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• m4ll0k / Aron
  ☆130Updated this week
• PR0PH3CY33 / XSS-Freak
  ☆133Updated this week
• kp625544 / subtake
  Extension of sublister tool to check for subdomain takeovers
  ☆22Updated 6 years ago
• UnkL4b / GitBackdorizer
  GitBackdorizer (bad name, I know!) Is a proof of concept from Ulisses Castro's talk - 50 ton of backdoors (https://www.slideshare.net/uli…
  ☆49Updated 6 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated last year
• Leviathan36 / trigmap
  A wrapper for Nmap to quickly run network scans
  ☆145Updated 3 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• joesmithjaffa / jenkins-shell
  Automating Jenkins Hacking using Shodan API
  ☆94Updated 6 years ago