lokori / flask-vuln
Pretty vulnerable flask app..
☆23Updated 5 years ago
Related projects: ⓘ
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆98Updated 5 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- ☆41Updated 4 years ago
- HTML5 WebSocket message fuzzer☆141Updated 5 years ago
- Dirbuster plugin for Burp Suite☆70Updated 7 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- ☆70Updated 6 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆49Updated 6 years ago
- ☆96Updated this week
- Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.☆24Updated 2 years ago
- Duncan - Blind SQL injector skeleton☆56Updated 2 years ago
- Burp Suite extension for JAX-RS☆65Updated 7 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆64Updated 9 months ago
- Proof-of-concept CORS exploitation tool.☆34Updated 5 years ago
- CVE-2018-7600 Drupal RCE☆115Updated 6 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 7 years ago
- JWT fuzzer☆104Updated 6 years ago
- SHELLING - a comprehensive OS command injection payload generator☆104Updated 5 years ago
- Full TTY reverse shell over SSH☆57Updated 4 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 5 years ago
- Some scripts and exploits☆142Updated 6 years ago
- BSidesSF CTF 2019 release☆72Updated last year
- ☆32Updated 3 years ago
- Automated Python Code Injection Tool☆85Updated 2 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆81Updated 4 years ago
- Dockerized version of Sn1per (https://github.com/1N3/Sn1per)☆59Updated 6 years ago
- Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container☆32Updated 6 years ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆70Updated 4 years ago