A simple web app with a XXE vulnerability.
☆232Nov 10, 2021Updated 4 years ago
Alternatives and similar repositories for xxelab
Users that are interested in xxelab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆417Mar 16, 2023Updated 3 years ago
- Practice hacking JWT tokens☆115Sep 8, 2022Updated 3 years ago
- A NoSQL Injectable Node App☆42Jun 8, 2021Updated 4 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆768Aug 21, 2023Updated 2 years ago
- ☆250Jun 6, 2018Updated 7 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆112Mar 22, 2024Updated 2 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 8 months ago
- Simple HS256, HS384 & HS512 JWT token brute force cracker.☆1,166Jul 13, 2024Updated last year
- Damn Vulnerable WordPress☆199Dec 23, 2023Updated 2 years ago
- Bash script that creates directories and files to organize a pentesting☆12May 26, 2021Updated 4 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆328Mar 27, 2024Updated 2 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,131Apr 21, 2024Updated last year
- Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn rea…☆458Dec 6, 2021Updated 4 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Sep 23, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- small set of scripts to practice exploit XSS and CSRF vulnerabilities☆66Dec 22, 2017Updated 8 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Sep 2, 2019Updated 6 years ago
- Labs built in docker to cover NSE lessons☆11Nov 24, 2023Updated 2 years ago
- ☆24Jan 26, 2021Updated 5 years ago
- ☆200Jun 6, 2019Updated 6 years ago
- LDAP Injection Vulnerability Application(Blog Sample Code)☆22Oct 4, 2018Updated 7 years ago
- All known and unknown public POC's for wordpress themes and plugins☆79Jun 23, 2021Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆93Aug 27, 2019Updated 6 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A mini webserver with FTP support for XXE payloads☆341Jan 3, 2024Updated 2 years ago
- OSWE Preparation☆669Jul 25, 2022Updated 3 years ago
- Local File Inclusion Scanner and Exploiter☆15Dec 28, 2021Updated 4 years ago
- Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis☆36Jul 10, 2018Updated 7 years ago
- GraphQL security workshop labs☆118Jan 31, 2026Updated last month
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆47Feb 16, 2024Updated 2 years ago
- Check List☆80Jul 16, 2022Updated 3 years ago
- CTF Writeups☆12Feb 25, 2023Updated 3 years ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,285Feb 10, 2026Updated last month
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Damn Vulnerable Thick Client App developed in C# .NET☆177Aug 17, 2023Updated 2 years ago
- These are installation notes based on Mayfly's installation notes. They are more streamlined for Vagrant as I did not take the Docker rou…☆28Jun 19, 2024Updated last year
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,364Jan 24, 2021Updated 5 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,726Dec 1, 2024Updated last year
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam☆44Jul 13, 2023Updated 2 years ago
- Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.☆40Nov 21, 2025Updated 4 months ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆93Jun 11, 2023Updated 2 years ago