farisv / PIL-RCE-Ghostscript-CVE-2018-16509Links
PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509
☆59Updated 4 years ago
Alternatives and similar repositories for PIL-RCE-Ghostscript-CVE-2018-16509
Users that are interested in PIL-RCE-Ghostscript-CVE-2018-16509 are comparing it to the libraries listed below
Sorting:
- A XSS mind map ;)☆56Updated 9 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆55Updated 5 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- Wordlist to bruteforce for LFI☆124Updated 5 years ago
- ☆50Updated 3 years ago
- Dependency Confusion Security Testing Tool☆47Updated 2 years ago
- ☆50Updated 4 years ago
- ☆26Updated 2 years ago
- ☆60Updated 11 months ago
- ☆42Updated last year
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆109Updated 3 years ago
- A collection of simple tools and poc-builders☆39Updated 2 months ago
- HTTP request smuggling tools☆18Updated 4 years ago
- ☆94Updated 3 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆47Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆59Updated 5 years ago
- ☆76Updated 4 years ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆30Updated 5 years ago
- A extension for collecting parameters☆25Updated 4 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- ☆167Updated 3 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- NotSoCereal: A Deserialization exploit playground☆52Updated 3 years ago
- Same Origin XSS challenge☆61Updated 3 years ago