kost / dvcs-ripper
Rip web accessible (distributed) version control systems: SVN/GIT/HG...
☆1,689Updated 2 months ago
Related projects: ⓘ
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆2,806Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,739Updated 4 months ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,407Updated 4 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,508Updated 4 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,335Updated last year
- The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.☆2,994Updated 3 years ago
- Linux Exploit Suggester; based on operating system release number☆1,774Updated 10 years ago
- HackBar plugin for Burpsuite☆1,520Updated 3 years ago
- 🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.☆1,384Updated last year
- Pwn stuff.☆1,754Updated 2 years ago
- PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.☆3,192Updated 3 weeks ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,030Updated 2 months ago
- Webshell && Backdoor Collection☆1,790Updated 4 years ago
- MS17-010☆2,130Updated last year
- Next-Generation Linux Kernel Exploit Suggester☆1,836Updated last year
- TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.☆1,540Updated 3 months ago
- A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.☆1,502Updated last year
- Automated NoSQL database enumeration and web application exploitation tool.☆2,868Updated last month
- The cheat sheet about Java Deserialization vulnerabilities☆3,018Updated last year
- Vulnerability Labs for security analysis☆1,153Updated 3 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,661Updated 2 years ago
- Weaponized web shell☆3,160Updated 4 months ago
- Automatic SSRF fuzzer and exploitation tool☆2,937Updated 3 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆1,357Updated 3 years ago
- Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.☆1,811Updated 4 years ago
- ☆994Updated this week
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆3,938Updated last year
- Code-Audit-Challenges☆973Updated 5 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,636Updated 2 years ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆4,513Updated this week