h3xstream / find-sec-bugs

Related projects ⓘ

Alternatives and complementary repositories for find-sec-bugs

• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆53Updated 9 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 7 years ago
• iriusrisk / resty-burp
  REST/JSON interface to Burp Suite
  ☆33Updated 4 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 10 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 8 years ago
• moloch-- / MitmFuzzer
  A fuzzing script for MitmProxy
  ☆22Updated 9 years ago
• mothran / apkminer
  Parallel APK analyzer
  ☆51Updated 7 years ago
• mitre-cyber-academy / ctf-scoreboard-archive
  Repository for the Deprecated MITRE Capture the Flag scoreboard.
  ☆11Updated 7 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• immunio / apache-struts2-CVE-2017-5638
  Demo Application and Exploit
  ☆35Updated 7 years ago
• h3xstream / burp-image-metadata
  Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).
  ☆14Updated last year
• WithSecureOpenSource / headless-scanner-driver
  A Burp Suite extension that starts scanning on requests it sees, and dumps results on standard output
  ☆20Updated 8 years ago
• ernw / dizzy-legacy
  Network and USB protocol fuzzing toolkit.
  ☆34Updated 7 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆77Updated 8 years ago
• infobyte / cscan
  Faraday Continuous Scanning
  ☆33Updated 8 years ago
• wireghoul / sploit-dev
  Exploits and research stuffs
  ☆54Updated last year
• jjyg / ssh_decoder
  ☆35Updated 12 years ago
• PortSwigger / same-origin-method-execution
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆15Updated 7 years ago
• pwntester / JVMDeserialization
  PoC for Scala and Groovy
  ☆14Updated 8 years ago
• ikkisoft / ParrotNG
  ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461
  ☆47Updated 9 years ago
• GrrrDog / ACEDcup
  Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
  ☆39Updated 8 years ago
• hatRiot / PeachOrchard
  Peach Fuzzer Web Frontend
  ☆52Updated 3 years ago
• peacand / burp-pyTemplate
  Burp extension to quickly and easily develop Python complex exploits based on Burp proxy requests.
  ☆33Updated 8 years ago
• dvolvox / PyCheckmarx
  Python API and REST API for the Checkmarx WSDL
  ☆13Updated 8 years ago
• Gnoxter / mountain_goat
  A PoC demonstrating techniques exploiting CVE-2016-5696 Off-Path TCP Exploits: Global Rate Limit Considered Dangerous
  ☆41Updated 8 years ago