Alternatives and similar repositories for phar-jpg-polyglot

Users that are interested in phar-jpg-polyglot are comparing it to the libraries listed below

• PortSwigger / serialization-examples
  ☆42Updated last year
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆176Updated last year
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆134Updated 5 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆71Updated 4 years ago
• mohinparamasivam / Sudo-1.8.31-Root-Exploit
  Root shell PoC for CVE-2021-3156
  ☆69Updated 4 years ago
• aadityapurani / NodeJS-Red-Team-Cheat-Sheet
  NodeJS Red-Team Cheat Sheet
  ☆220Updated 6 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆207Updated 11 months ago
• convisolabs / CVE-2021-22204-exiftool
  Python exploit for the CVE-2021-22204 vulnerability in Exiftool
  ☆95Updated 4 years ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆179Updated last year
• Sybil-Scan / imagemagick-lfi-poc
  ImageMagick LFI PoC [CVE-2022-44268]
  ☆53Updated last year
• mogwailabs / DNSrebinder
  A python based minimal DNS server to test/verify DNS rebinding attacks
  ☆50Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆130Updated last year
• wdahlenburg / werkzeug-debug-console-bypass
  Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…
  ☆61Updated 2 years ago
• silentsignal / rsa_sign2n
  Deriving RSA public keys from message-signature pairs
  ☆338Updated last year
• VikasVarshney / ssti-payload
  SSTI Payload Generator
  ☆91Updated 3 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆111Updated last year
• j0lt-github / python-deserialization-attack-payload-generator
  Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…
  ☆119Updated last year
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆70Updated 2 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆109Updated last year
• intruder-io / guidtool
  A tool to inspect and attack version 1 GUIDs
  ☆233Updated 2 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆112Updated 5 years ago
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆217Updated 5 months ago
• srini0x00 / dvta
  Damn Vulnerable Thick Client App developed in C# .NET
  ☆156Updated 2 years ago
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆340Updated 2 years ago
• bmdyy / tudo
  TUDO - A vulnerable PHP Web Application
  ☆121Updated 2 years ago
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆285Updated last year
• gh0x0st / OSWE-crawling-through-the-webs
  Becoming the spider, crawling through the webs to catch the fly.
  ☆76Updated 4 years ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆182Updated 3 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆227Updated last year
• svdwi / OSWE-Labs-Poc
  Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...
  ☆110Updated 4 years ago