kljunowsky / XXElixir
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
☆68Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for XXElixir
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 3 weeks ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆42Updated 8 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆55Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 2 weeks ago
- Web cache poisoning vulnerability scanner.☆61Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆52Updated last year
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆53Updated last year
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆35Updated last year
- Authorization-Nuclei-Templates☆37Updated 2 months ago
- IIS shortname scanner + bruteforce☆49Updated 9 months ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- ☆56Updated last year
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆35Updated 2 weeks ago
- unleashed ffuf☆96Updated 4 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆106Updated last week
- Bypass Reset Password Code Lead to Account Takeover☆22Updated 2 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 4 months ago
- ☆52Updated 6 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- A Lightning-Fast DNS Resolver written in Rust 🦀☆65Updated this week
- A really fast http prober.☆39Updated 9 months ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆39Updated 5 months ago
- ☆26Updated 4 years ago
- JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host and…☆32Updated 2 months ago
- A simple bug bounty utility tool to remove uninteresting entries from a list of URLs.☆15Updated 3 months ago