frohoff / rails_exploits

Related projects ⓘ

Alternatives and complementary repositories for rails_exploits

• miaouPlop / GWT-3D
  ☆24Updated 8 years ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆43Updated 7 years ago
• nccgroup / JDSer-ngng
  A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.
  ☆25Updated 9 years ago
• the-bumble / Burp-Scanner-OOB-Checks
  This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter
  ☆20Updated 7 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆49Updated 8 years ago
• GrrrDog / ACEDcup
  Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
  ☆39Updated 8 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 5 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 8 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• lavalamp- / content-discovery-hit-lists
  This repository contains hit lists to use for web application content discovery.
  ☆11Updated 7 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆56Updated 8 years ago
• o2platform / DefCon_RESTing
  Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro
  ☆51Updated 11 years ago
• smiegles / crossdomain
  Exploit insecure crossdomain.xml files.
  ☆26Updated 7 years ago
• nccgroup / jmxbf
  A brute force program to test weak accounts configured to access a JMX Registry
  ☆33Updated 7 years ago
• bcoles / sitecore_scan
  A simple remote scanner for Sitecore CMS
  ☆12Updated 5 months ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 6 years ago
• federicodotta / BurpJDSer-ng-edited
  Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…
  ☆20Updated 9 months ago
• ewilded / SCARY
  PHP Source Code Analyzer written in Perl (taint checking)
  ☆18Updated 4 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆20Updated 6 years ago
• v-p-b / DangerousPHPFunctions
  Growing list of potentially dangerous PHP functions
  ☆52Updated 5 years ago
• RUB-NDS / JOSEPH
  ☆33Updated 3 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 7 years ago
• burp-hash / burp-hash
  ☆32Updated 9 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 7 years ago
• Matir / webborer
  WebBorer is a directory-enumeration tool written in Go.
  ☆44Updated last year
• irsdl / updated-SWFIntruder
  Updated version of SWFIntruder
  ☆26Updated 8 years ago
• zi0Black / POC-CVE-2018-0114
  This repository contains the POC of an exploit for node-jose < 0.11.0
  ☆25Updated last year
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago