infodox / web-exploitation-engineLinks
Generic Command Exploitation Engine for exploiting web application command-injection bugs,.
☆31Updated 12 years ago
Alternatives and similar repositories for web-exploitation-engine
Users that are interested in web-exploitation-engine are comparing it to the libraries listed below
Sorting:
- Flash crossdomain policy security checker☆26Updated 9 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Broken web app intentionally built with pentesting obstacles☆15Updated 5 years ago
- Windows Privesc Check☆20Updated 11 years ago
- Provide a sort of shell-ish interface to make file directory traversal quicker and easier.☆24Updated 8 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38Updated 8 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …☆22Updated 5 years ago
- ☆10Updated 9 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).☆14Updated 2 years ago
- Vulnerable Node.js Web Application to pratice with your pentesting skills☆21Updated 8 years ago
- Format string exploit generation☆10Updated 9 years ago
- An automated Python + Ruby based XXE Exploiter (GUI + CLI)☆20Updated 8 years ago
- Automated install process for Phishing Frenzy☆24Updated 10 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 4 years ago
- Tool orchestrator. Specify targets and run sets of tools against them.☆19Updated 8 years ago
- Faraday Workspaces for Bug Bounties☆21Updated 9 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Working Rsh Client With Bind/Reverse Shell☆20Updated 9 years ago
- Squirtle the Browser-based NTLM Attack Toolkit☆17Updated 10 years ago
- CVE-2017-8570 Exploit☆21Updated 7 years ago
- ☆11Updated 7 years ago
- Ruby based script to perform application scanning of a URL, looking for specific pages to target.☆26Updated 10 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- ☆20Updated 8 years ago
- Exploit Reliability Testing System☆34Updated 10 years ago
- Projects and POCs☆60Updated 10 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Updated 7 years ago