kozmic / laravel-poc-CVE-2018-15133
PoC for CVE-2018-15133 (Laravel unserialize vulnerability)
☆247Updated 6 months ago
Related projects: ⓘ
- (PoC) Python version of CVE-2019-11043 exploit by neex☆143Updated 4 years ago
- Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!☆294Updated 5 years ago
- Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)☆361Updated 4 years ago
- Apache Tomcat Remote Code Execution on Windows☆185Updated 4 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆112Updated last year
- ☆257Updated 5 years ago
- CVE-2018-13379☆250Updated 5 years ago
- Redis 4.x & 5.x RCE☆138Updated 5 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- A mini webserver with FTP support for XXE payloads☆326Updated 8 months ago
- Scan Victim Backup Directories & Backup Files☆178Updated 11 months ago
- Bypassing WAF by abusing SSL/TLS Ciphers☆302Updated 3 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆343Updated last year
- CVE-2018-13382☆145Updated 5 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆137Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆251Updated 2 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…☆309Updated 5 years ago
- SHELLING - a comprehensive OS command injection payload generator☆104Updated 5 years ago
- CVE 2021-21315 PoC☆154Updated 3 years ago
- YSOSERIAL Integration with burp suite☆160Updated last year
- Utils☆264Updated 8 years ago
- A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web☆68Updated 4 years ago
- HTTP.ninja☆147Updated last year
- XXE Out of Band Server.☆168Updated last year
- Lab for exploring SSRF vulnerabilities☆245Updated 3 years ago
- Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.☆169Updated 2 years ago
- Exploit for Drupal 7 <= 7.57 CVE-2018-7600☆124Updated 6 years ago
- Data extraction tool for Docker Registry API☆123Updated 7 months ago
- Generate a PNG with a payload embedded in the IDAT chunk (Based off of previous concepts and code -- credit in README)☆194Updated 11 months ago