lprat / smuggling_detect
Try to detect HTTP desync attack (https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn)
☆12Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for smuggling_detect
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 5 years ago
- miscellaneous security research stuff☆38Updated 5 years ago
- CVE-2020-12828 PoC and Analysis.☆28Updated 4 years ago
- burp extender for fuzzing☆10Updated 6 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated last year
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 5 months ago
- RAS(RAndom Subdomain) Fuzzer☆43Updated 4 years ago
- Scans tcl for command injection☆36Updated 5 years ago
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- ☆34Updated 5 years ago
- Essential tool for finding blind injection attacks.☆50Updated 5 years ago
- Broken Link Hijacking Burp Extension☆55Updated 5 years ago
- ☆27Updated 4 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 6 years ago
- Burp extension☆57Updated 6 years ago
- A tool that turns the authoritative nameservers of DNS providers to resolvers and resolves the target domain list. Please think of this a…☆25Updated 5 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- PoC for CVE-2019-10149, this vulnerability could be xploited betwen 4-87 to 4.91 version of Exim server.☆14Updated 5 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated last year
- Kubernetes Scanner☆41Updated 2 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆49Updated 5 years ago
- Hacking Artifactory with server side template injection☆51Updated 4 years ago
- asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the …☆26Updated 3 years ago
- A Flexible Web Shell Client, Built on Electron☆13Updated last year