laurent22 / so-sql-injections
SQL injection vulnerabilities in Stack Overflow PHP questions
☆169Updated 7 years ago
Related projects: ⓘ
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()☆143Updated 9 years ago
- Hack your friend's online MMORPG game - specific focus, php file upload scripts☆100Updated 7 years ago
- Your interpreter isn’t safe anymore — The PHP module backdoor☆218Updated 5 years ago
- Hack your friend's online MMORPG game - specific focus, csrf/xss attacks☆89Updated 8 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 6 years ago
- Hunt for vulnerable websites as you browse.☆129Updated 7 years ago
- PHP function tracker☆241Updated 5 months ago
- A PoC for exploiting Guzzle's HTTP_PROXY untrusted read☆53Updated 8 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆315Updated 6 years ago
- ☆120Updated 5 years ago
- ☆146Updated 4 years ago
- Bypassing disabled exec functions in PHP (c) CRLF☆400Updated 3 years ago
- OWASP PHP Security Project - THIS PROJECT IS INACTIVE AND MAY CONTAIN SECURITY FLAWS☆197Updated 8 years ago
- ☆129Updated this week
- Authenticate against a MySQL server without knowing the cleartext password☆221Updated 2 years ago
- A webshell framework for penetration testers.☆294Updated 5 months ago
- Local Privilege Escalation☆203Updated 7 years ago
- A static security scanner for PHP☆96Updated 9 years ago
- A repository of knowledge accumulated that may help in the other BTN challenge repos☆13Updated 8 years ago
- 🔥🔥🔥 Out of the Browser into the Fire - Cross platform XSS worm framework 🔥🔥🔥☆133Updated 7 years ago
- A demo of altering an opened tab after a timer☆124Updated 8 years ago
- GnuPG-encrypted emails made easy☆96Updated 2 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.☆336Updated 3 months ago
- A list of publicly known but unfixed security bugs☆240Updated 6 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated last year
- ☆350Updated 3 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆130Updated 7 years ago
- Pen test your "friend's" online MMORPG game - specific focus, sql injection opportunities☆413Updated 8 years ago
- Secure Content Management for the Modern Web - "The sky is only the beginning"☆418Updated 5 years ago
- ☆24Updated this week