httpvoid / CVE-ReverseLinks
☆282Updated 3 years ago
Alternatives and similar repositories for CVE-Reverse
Users that are interested in CVE-Reverse are comparing it to the libraries listed below
Sorting:
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆360Updated 3 years ago
- PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)☆223Updated 5 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆271Updated 8 months ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆349Updated 2 years ago
- DNS rebinding toolkit☆255Updated 2 years ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆609Updated 4 years ago
- jolokia-exploitation-toolkit☆298Updated 10 months ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆183Updated 5 years ago
- Scan Victim Backup Directories & Backup Files☆180Updated 2 years ago
- Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)☆177Updated 4 years ago
- ☆413Updated 3 years ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆183Updated 3 years ago
- Everything you need about Burp Extension Generation☆156Updated 2 years ago
- Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.☆178Updated 4 years ago
- Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)☆177Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆264Updated 3 years ago
- ☆126Updated 3 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆262Updated 3 years ago
- Data extraction tool for Docker Registry API☆132Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆278Updated 4 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆442Updated 3 years ago
- ☆205Updated 4 years ago
- A mini webserver with FTP support for XXE payloads☆333Updated last year
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆81Updated 7 years ago
- ☆118Updated 5 years ago
- Simple python script to extract unsafe functions from php projects☆196Updated 7 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆639Updated last year
- Exploitation toolkit for RichFaces☆105Updated last year