glebarez / padre
Blazing fast, advanced Padding Oracle exploit
☆236Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for padre
- PP-finder Help you find gadget for prototype pollution exploitation☆137Updated 3 months ago
- Complex payload encoder☆209Updated 9 months ago
- Automated learning of regexes for DNS discovery☆358Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆317Updated 10 months ago
- ☆146Updated last year
- Discover new target domains using Content Security Policy☆379Updated this week
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆305Updated 6 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆252Updated 4 months ago
- ☆372Updated last year
- IIS shortname scanner written in Go☆311Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆154Updated last week
- Session Hijacking Visual Exploitation☆193Updated 8 months ago
- Repository to store exploits created by Assetnotes Security Research team☆175Updated last year
- Rust-based high performance domain permutation generator.☆274Updated 11 months ago
- CT Log Scanner☆281Updated last month
- Local File Inclusion discovery and exploitation tool☆221Updated last month
- A library for detecting known secrets across many web frameworks☆511Updated this week
- gRPC-Web Pentesting Suite + Burp Suite Extension☆166Updated 4 months ago
- ☆353Updated 6 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆115Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆526Updated 3 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆246Updated 5 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆493Updated 2 years ago
- ☆73Updated 3 months ago
- A collection of offensive Go packages inspired by different Go repositories.☆210Updated last week
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆63Updated 7 months ago
- Bambdas collection for Burp Suite Professional and Community.☆203Updated last week
- HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy + Exploit Timing Attacks☆138Updated this week
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆273Updated last year
- Find CVE PoCs on GitHub☆137Updated last year