grayddq / SSRF_payloadLinks
本脚本旨在生成各类畸形URL链接,进行探测使用的payload,尝试绕过服务端ssrf限制。
☆29Updated 6 years ago
Alternatives and similar repositories for SSRF_payload
Users that are interested in SSRF_payload are comparing it to the libraries listed below
Sorting:
- Burp extension that add a tab to edit Office Open XML document (xlsx,docx,pptx)☆13Updated 7 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆63Updated 6 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆78Updated 6 years ago
- A simple PoC for WordPress RCE (author priviledge), refer to CVE-2019-8942 and CVE-2019-8943.☆74Updated 6 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆107Updated 5 years ago
- SqlMap_BurpSuite☆50Updated 5 years ago
- 轻量化端口扫描工具☆14Updated 5 years ago
- ☆127Updated 3 years ago
- JWT_Brute☆32Updated 5 years ago
- Citrix ADC Remote Code Execution☆84Updated 5 years ago
- Own collection dictionary☆14Updated 5 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 6 years ago
- small set of scripts to practice exploit XSS and CSRF vulnerabilities☆62Updated 7 years ago
- Automated script for F5 BIG-IP scanner (CVE-2020-5902) using hosts retrieved from Shodan API.☆56Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆120Updated 4 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 6 years ago
- Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0☆83Updated 5 years ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆53Updated 5 years ago
- CVE-2020-2555 Python POC☆47Updated 5 years ago
- CVE-2019-6340-Drupal SA-CORE-2019-003☆32Updated 6 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆44Updated 3 years ago
- SQLMap tamper api to accept tamper scripts from all languages☆60Updated 7 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- Jumbo Python Penetration testing framework☆31Updated 6 years ago
- Flexible Penetrate Testing Auxiliary Suite☆72Updated 2 years ago
- WS-Attacker is a modular framework for web services Security penetration testing.☆12Updated 6 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆95Updated 2 years ago
- Burp Extension to manipulate AES encrypted payloads☆14Updated 3 years ago
- CVE-2019-15107 Webmin RCE (unauthorized)☆64Updated 5 years ago