farisv / PIL-RCE-Ghostscript-CVE-2018-16509
PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509
☆57Updated 4 years ago
Alternatives and similar repositories for PIL-RCE-Ghostscript-CVE-2018-16509:
Users that are interested in PIL-RCE-Ghostscript-CVE-2018-16509 are comparing it to the libraries listed below
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Wordlist to bruteforce for LFI☆123Updated 5 years ago
- ☆39Updated last year
- HTTP request smuggling tools☆18Updated 4 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆107Updated 3 years ago
- CTF, wargame cheatsheet☆31Updated 6 years ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆85Updated 6 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆55Updated 5 years ago
- ☆76Updated 4 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- ☆50Updated 2 years ago
- Add headers to all Burp requests to bypass some WAF products☆38Updated last year
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago
- ☆59Updated 9 months ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Blog about HTTP Request Smuggling, including a demo application.☆24Updated 3 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆62Updated 2 years ago
- ☆160Updated 3 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆39Updated 4 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- A Web-UI for subdomain enumeration (subfinder)☆54Updated 4 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆84Updated last year
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆94Updated 3 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 3 years ago