freeqaz / react2shellLinks
An analysis of CVE-2025-55182 and CVE-2025-66478 -- the vulnerabilities behind React2Shell. Tools, technical information, etc
☆59Updated last month
Alternatives and similar repositories for react2shell
Users that are interested in react2shell are comparing it to the libraries listed below
Sorting:
- Local Privilege Escalation to Root via Sudo chroot in Linux☆447Updated 6 months ago
- CVE-2025-29927 Proof of Concept☆96Updated 10 months ago
- ☆536Updated 2 months ago
- Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387)☆165Updated last year
- A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnera…☆407Updated last month
- n8n Ni8mare - Unauthenticated Arbitrary File Read to RCE Chain (CVSS 10.0)☆227Updated 3 weeks ago
- Scripts and examples for "From Day Zero to Zero Day" by Eugene Lim.☆211Updated 2 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…☆711Updated last month
- A WordPress plugin that provides reverse shell functionality with a graphical user interface (GUI) for configuration. This plugin allows …☆49Updated 2 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆400Updated last month
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆209Updated 8 months ago
- Exploiting the xmlrpc.php☆65Updated 2 years ago
- jxscout superpowers JavaScript analysis for security researchers☆355Updated 4 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆151Updated 10 months ago
- This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…☆126Updated 3 months ago
- his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulne…☆183Updated 10 months ago
- Fast exfiltration of text using only CSS and Ligatures☆89Updated 4 months ago
- Burp Payloads☆116Updated 8 years ago
- List of payloads: reverse shell, bind shell, webshell.☆61Updated 2 months ago
- Latest CVEs with their Proof of Concept exploits.☆1,108Updated last week
- Local File Inclusion discovery and exploitation tool☆332Updated last year
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆247Updated 6 months ago
- Original Proof-of-Concepts for React2Shell CVE-2025-55182☆1,020Updated last month
- Damn Vulnerable WordPress☆194Updated 2 years ago
- React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)☆182Updated last month
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆225Updated 6 months ago
- A python based minimal DNS server to test/verify DNS rebinding attacks☆69Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆187Updated last year
- A fast, minimalistic scanner for time-based SQL injection (SQLi) detection – built in Go.☆135Updated 8 months ago
- Wordlists for Fuzzing☆122Updated 5 years ago