lokori / flask-vuln

Related projects: ⓘ

• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆98Updated 5 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆141Updated 5 years ago
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 7 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆82Updated 7 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 6 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆49Updated 6 years ago
• frizb / SourceCodeSniffer
  ☆96Updated this week
• PortSwigger / flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆24Updated 2 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆56Updated 2 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 7 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 9 months ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• g0rx / CVE-2018-7600-Drupal-RCE
  CVE-2018-7600 Drupal RCE
  ☆115Updated 6 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆104Updated 6 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆104Updated 5 years ago
• ajxchapman / sshreverseshell
  Full TTY reverse shell over SSH
  ☆57Updated 4 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 5 years ago
• quentinhardy / scriptsAndExploits
  Some scripts and exploits
  ☆142Updated 6 years ago
• BSidesSF / ctf-2019-release
  BSidesSF CTF 2019 release
  ☆72Updated last year
• RUB-NDS / JOSEPH
  ☆32Updated 3 years ago
• sethsec / PyCodeInjection
  Automated Python Code Injection Tool
  ☆85Updated 2 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆81Updated 4 years ago
• menzow / sn1per-docker
  Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
  ☆59Updated 6 years ago
• t0kx / exploit-CVE-2015-1427
  Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container
  ☆32Updated 6 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• destine21 / ZIPFileRaider
  ZIP File Raider - Burp Extension for ZIP File Payload Testing
  ☆70Updated 4 years ago