jamieparfet / Apache-OFBiz-XXEView external linksLinks
XXE injection (file disclosure) exploit for Apache OFBiz < 16.11.04
☆13Oct 16, 2018Updated 7 years ago
Alternatives and similar repositories for Apache-OFBiz-XXE
Users that are interested in Apache-OFBiz-XXE are comparing it to the libraries listed below
Sorting:
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Jul 20, 2022Updated 3 years ago
- ☆16Feb 26, 2018Updated 7 years ago
- 根据Golismero源码二次开发的分布式漏洞扫描器(调试版)☆18Jul 25, 2016Updated 9 years ago
- ☆18Aug 15, 2025Updated 6 months ago
- 复现Django漏洞时的部分环境,推荐使用virtualenv还原部分漏洞☆12May 18, 2017Updated 8 years ago
- golang program to send RSS feeds per E-Mail☆10Sep 1, 2025Updated 5 months ago
- My solutions in Python for Corelan's Exploit Writing Tutorials☆13Jun 2, 2016Updated 9 years ago
- Simple SSH server that serves anonymous git repositories (read-only)☆11Oct 18, 2018Updated 7 years ago
- ☆12Apr 21, 2020Updated 5 years ago
- PoC code for crashing windows active directory☆35Sep 19, 2018Updated 7 years ago
- 可能有一些你没见过的端口扫描脚本☆12Nov 28, 2018Updated 7 years ago
- ☆13Jun 13, 2017Updated 8 years ago
- All the content from my Troopers 19 talk☆12Mar 20, 2019Updated 6 years ago
- ☆14May 17, 2018Updated 7 years ago
- ☆11Mar 30, 2017Updated 8 years ago
- SecurityPaper For http://www.polaris-lab.com/☆27Nov 23, 2017Updated 8 years ago
- ☆13Feb 17, 2016Updated 10 years ago
- AppXSvc Arbitrary File Security Descriptor Overwrite EoP☆20Sep 15, 2019Updated 6 years ago
- ☆35Nov 2, 2022Updated 3 years ago
- NodeXP - A Server Side Javascript Injection tool capable of detecting and exploiting Node.js vulnerabilities☆108Jan 31, 2025Updated last year
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆72Aug 31, 2020Updated 5 years ago
- just a spider☆18Mar 20, 2018Updated 7 years ago
- POC for CVE-2018-15685☆42Aug 24, 2018Updated 7 years ago
- ZipArchive 2.1.4 dir traversal 0-Day☆17Aug 30, 2018Updated 7 years ago
- https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data☆17Jun 14, 2018Updated 7 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆44Nov 23, 2021Updated 4 years ago
- Attempts to determine the configuration, behavior, and type of a remote MQTT broker☆16Mar 26, 2019Updated 6 years ago
- CVE-2018-3191 反弹shell☆16Oct 23, 2018Updated 7 years ago
- ☆43Aug 30, 2018Updated 7 years ago
- It is a Python+Perl script to exploit ASP.net Padding Oracle vulnerability.☆18Aug 2, 2016Updated 9 years ago
- A Java serializer in JavaScript☆81May 21, 2018Updated 7 years ago
- IoC's, PCRE's, YARA's etc☆24Mar 25, 2025Updated 10 months ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆25Oct 25, 2020Updated 5 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆57Feb 12, 2022Updated 4 years ago
- Are your installed packages _really_ the same as you saw on GitHub?☆24Jun 1, 2018Updated 7 years ago
- Exploit PoC for CVE's and non CVE's alike☆22Jul 24, 2020Updated 5 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 2 years ago
- 针对struts2的漏洞检测工具(可批量)☆23Sep 25, 2017Updated 8 years ago
- ERPScan Public POC for CVE-2018-2636☆22Feb 1, 2018Updated 8 years ago