fakhrizulkifli / Defeating-PHP-GD-imagecreatefromjpeg
Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()
☆144Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for Defeating-PHP-GD-imagecreatefromjpeg
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()☆121Updated 9 years ago
- php-fpm+Nginx RCE☆101Updated 4 years ago
- small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns☆318Updated 7 months ago
- ☆73Updated 6 years ago
- PoC for CVE-2018-15133 (Laravel unserialize vulnerability)☆247Updated 7 months ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆253Updated 2 years ago
- Bypassing disabled exec functions in PHP (c) CRLF☆400Updated 4 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆346Updated 6 years ago
- ☆259Updated 5 years ago
- Exploit for Drupal 7 <= 7.57 CVE-2018-7600☆130Updated 6 years ago
- PHP tool to scan ADOdb code for SQL Injections☆31Updated 8 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆172Updated 4 years ago
- Demo project how to bypass the disable_functions security control of PHP on Linux☆24Updated 5 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆113Updated 2 years ago
- Collection of vulnerable and fixed PHP synthetic test cases☆58Updated last year
- Sample vulnerable code and its exploit code☆189Updated 3 years ago
- HTTP.ninja☆147Updated last year
- Audit your PHP version for known CVEs and patches☆113Updated this week
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 6 years ago
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.☆178Updated 5 years ago
- A PHP version scanner for reporting possible vulnerabilities☆255Updated 4 years ago
- HTML5 WebSocket message fuzzer☆143Updated 5 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆113Updated 4 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆118Updated 5 years ago
- Gogs CVEs☆78Updated 4 years ago
- Common Web Managers Fuzz Wordlists☆172Updated this week
- simple script to extract all web resources by means of .SVN folder exposed over network.☆449Updated 9 months ago
- Toolset for detecting reflected xss in websites☆109Updated 6 years ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆98Updated 5 years ago
- Java serialization brute force attack tool.☆124Updated 7 years ago