Alternatives and similar repositories for phar-jpg-polyglot

Users that are interested in phar-jpg-polyglot are comparing it to the libraries listed below

• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆106Updated last year
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆159Updated 9 months ago
• mohinparamasivam / Sudo-1.8.31-Root-Exploit
  Root shell PoC for CVE-2021-3156
  ☆66Updated 4 years ago
• PortSwigger / serialization-examples
  ☆39Updated last year
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆70Updated 4 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆66Updated 2 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆128Updated 5 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆123Updated 5 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆202Updated 7 months ago
• computer-engineer / WhiteboxPentest
  Whitebox source code review cheatsheet (Based on AWAE syllabus)
  ☆134Updated 3 years ago
• Sybil-Scan / imagemagick-lfi-poc
  ImageMagick LFI PoC [CVE-2022-44268]
  ☆52Updated last year
• wdahlenburg / werkzeug-debug-console-bypass
  Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…
  ☆57Updated 2 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆108Updated last year
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆106Updated 5 years ago
• bmdyy / tudo
  TUDO - A vulnerable PHP Web Application.
  ☆109Updated 2 years ago
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆271Updated 2 years ago
• mogwailabs / DNSrebinder
  A python based minimal DNS server to test/verify DNS rebinding attacks
  ☆46Updated last year
• BKreisel / sqlmap-websocket-proxy
  Tool to enable blind sql injection attacks against websockets using sqlmap
  ☆60Updated last week
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆175Updated last year
• silentsignal / rsa_sign2n
  Deriving RSA public keys from message-signature pairs
  ☆318Updated last year
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated last year
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆126Updated last year
• j0lt-github / python-deserialization-attack-payload-generator
  Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…
  ☆111Updated last year
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆134Updated 5 months ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago