infodox / web-exploitation-engine
Generic Command Exploitation Engine for exploiting web application command-injection bugs,.
☆31Updated 12 years ago
Alternatives and similar repositories for web-exploitation-engine:
Users that are interested in web-exploitation-engine are comparing it to the libraries listed below
- Windows Privesc Check☆20Updated 10 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).☆14Updated last year
- ☆10Updated 9 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Generate pentest reports based on github issues.☆17Updated 2 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 3 years ago
- A simple grep user interface for searching code which can be used for SAST.☆8Updated 5 years ago
- Communicate with a remote shell easily☆12Updated 7 years ago
- Reverse to use in a batfile which can call the ip and ports from itself☆24Updated 4 years ago
- Broken web app intentionally built with pentesting obstacles☆15Updated 5 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 7 years ago
- Updated 6 years ago
- Enumerate subdomains through Virustotal☆32Updated 5 years ago
- Vulnerable Node.js Web Application to pratice with your pentesting skills☆21Updated 7 years ago
- AV Bypass☆29Updated 7 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Search the ExploitDB with a little more control☆21Updated 7 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- ☆15Updated 2 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- Automated install process for Phishing Frenzy☆23Updated 10 years ago
- Useful Windows and AD tools☆15Updated 3 years ago
- Scripts for OSCE☆18Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Squirtle the Browser-based NTLM Attack Toolkit☆18Updated 9 years ago
- Files from Zeronights presentation.☆28Updated 12 years ago