lokori / flask-vuln

Related projects ⓘ

Alternatives and complementary repositories for flask-vuln

• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆98Updated 5 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• ajxchapman / sshreverseshell
  Full TTY reverse shell over SSH
  ☆57Updated 4 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 11 months ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆144Updated 5 years ago
• yolosec / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆34Updated 8 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated 4 months ago
• TheTwitchy / vulnd_xxe
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆25Updated 6 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 5 years ago
• 0ang3el / EasyCSRF
  ☆159Updated 6 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆49Updated 8 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• si9int / Acamar
  A Python3 based single-file subdomain enumerator
  ☆90Updated 5 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 7 years ago
• anandtiwarics / python-burp-rest-api
  Python Package for burprestapi
  ☆16Updated 4 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆49Updated 6 years ago
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆30Updated 5 months ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• PortSwigger / json-web-token-attacker
  ☆107Updated 2 years ago
• quentinhardy / scriptsAndExploits
  Some scripts and exploits
  ☆142Updated 6 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆128Updated 4 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 3 years ago
• t0kx / exploit-CVE-2015-1427
  Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container
  ☆32Updated 6 years ago
• g0rx / CVE-2018-7600-Drupal-RCE
  CVE-2018-7600 Drupal RCE
  ☆115Updated 6 years ago
• rudSarkar / crlf-injector
  A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…
  ☆46Updated 2 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆135Updated 3 years ago