glebarez / padreLinks
Blazing fast, advanced Padding Oracle exploit
☆254Updated last year
Alternatives and similar repositories for padre
Users that are interested in padre are comparing it to the libraries listed below
Sorting:
- PP-finder Help you find gadget for prototype pollution exploitation☆164Updated 10 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆358Updated last month
- A rapid HTTP downgrade smuggling scanner written in Go.☆295Updated last year
- IIS shortname scanner written in Go☆335Updated 2 years ago
- Complex payload encoder☆228Updated last year
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆283Updated 9 months ago
- ☆152Updated last year
- Session Hijacking Visual Exploitation☆200Updated last year
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- ☆379Updated 2 years ago
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆211Updated last month
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆141Updated 6 months ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆119Updated 3 weeks ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 3 months ago
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications☆222Updated 3 months ago
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆216Updated 3 months ago
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆341Updated last year
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆109Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆292Updated last year
- Black box fuzzer for web applications☆427Updated 11 months ago
- Enumerate / Dump Docker Registry☆178Updated last year
- Discover new target domains using Content Security Policy☆447Updated this week
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆89Updated last month
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆314Updated 6 months ago
- Automated learning of regexes for DNS discovery☆370Updated 2 years ago
- CT Log Scanner☆376Updated 2 months ago
- unleashed ffuf☆211Updated 3 weeks ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆659Updated 2 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆642Updated last year