hoodoer / postBasedXSS

Related projects ⓘ

Alternatives and complementary repositories for postBasedXSS

• horizon3ai / CVE-2023-26067
  Lexmark CVE-2023-26067
  ☆22Updated last year
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆48Updated 2 years ago
• SecGus / anewer
  A modified version of TomNomNom's anew, allowing for multiple files to be defined as parameters.
  ☆11Updated last year
• DingyShark / nuclei-scan-sort
  Simple Python script to sort nuclei scans by severity and URL
  ☆29Updated last year
• trickest / packages
  Automated compromise detection of the world's most popular packages
  ☆15Updated last year
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆22Updated 2 years ago
• xnl-h4ck3r / HandE-Burp-Extension
  H&E- Burp Highlighter and Extractor
  ☆18Updated last year
• riramar / SmuggleTP
  A straightforward tool for exploiting SMTP Smuggling vulnerabilities.
  ☆15Updated 3 months ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆36Updated 2 years ago
• GoSecure / request-smuggling-workshop
  ☆23Updated last year
• yeswehack / BCheck-Burp-scripts
  Bcheck scripts for Burp
  ☆23Updated 3 months ago
• numanturle / CVE-2022-41040
  CVE-2022-41040 nuclei template
  ☆18Updated 2 years ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆58Updated 10 months ago
• seajaysec / Ivanti-Connect-Around-Scan
  Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.
  ☆12Updated 9 months ago
• harisec / orange-confusion-attacks
  ☆19Updated 2 months ago
• iustin24 / chameleon-wordlists
  Chameleon Wordlists
  ☆14Updated 2 years ago
• n0kovo / DomainDouche
  OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.
  ☆26Updated last year
• cygenta / CVE-2020-3452
  ☆26Updated 2 years ago
• redhuntlabs / BurpSuite-Asset_History
  ☆33Updated 4 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 4 years ago
• edermi / gophish_mods
  Open-Source Phishing Toolkit
  ☆17Updated 3 years ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆20Updated 11 months ago
• Vozec / CVE-2023-22527
  This repository presents a proof-of-concept of CVE-2023-22527
  ☆13Updated 9 months ago
• HernanRodriguez1 / ScanReflectedSSTI
  Template Nuclei SSTI
  ☆28Updated last year
• HawSec / ginger
  A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.
  ☆14Updated 3 years ago
• Stuub / CVE-2024-31848-PoC
  PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal
  ☆15Updated 6 months ago
• ariary / DomXssFinder
  Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰
  ☆22Updated 8 months ago
• vin01 / poc-proxycommand-vulnerable-v2
  Proof of conept to exploit vulnerable proxycommand configurations on ssh clients
  ☆18Updated 10 months ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆24Updated 9 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆39Updated 10 months ago