lprat / smuggling_detect
Try to detect HTTP desync attack (https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn)
☆12Updated 5 years ago
Alternatives and similar repositories for smuggling_detect:
Users that are interested in smuggling_detect are comparing it to the libraries listed below
- CVE-2020-12828 PoC and Analysis.☆28Updated 4 years ago
- Essential tool for finding blind injection attacks.☆50Updated 6 years ago
- burp extender for fuzzing☆10Updated 6 years ago
- ☆34Updated 5 years ago
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 6 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 10 months ago
- Another plugin for CRLF vulnerability detection☆26Updated 8 years ago
- ☆25Updated 7 years ago
- Interactive Post Exploitation Tool☆36Updated 5 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Powershell SMBv3 Compression checker☆28Updated last year
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated 2 years ago
- miscellaneous security research stuff☆37Updated 5 years ago
- Scans tcl for command injection☆36Updated 5 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆38Updated 7 years ago
- Proof of concept showing how to exploit the CVE-2018-11759☆41Updated 6 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 5 years ago
- XSS payloads for edge cases☆34Updated 6 years ago
- ☆42Updated 4 years ago
- CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE☆16Updated 6 years ago
- (Wordpress) Ninja Forms File Uploads Extension <= 3.0.22 – Unauthenticated Arbitrary File Upload☆17Updated 5 years ago
- RAS(RAndom Subdomain) Fuzzer☆43Updated 5 years ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Updated 11 years ago
- All the information provided on this site is for educational purposes only.☆17Updated last year
- A Flexible Web Shell Client, Built on Electron☆13Updated 2 years ago
- CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE☆32Updated 4 years ago
- Burp extension☆57Updated 6 years ago
- CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4☆67Updated 5 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 6 years ago