Lab for exploring SSRF vulnerabilities
☆249May 30, 2021Updated 4 years ago
Alternatives and similar repositories for ssrf-lab
Users that are interested in ssrf-lab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo☆816Nov 28, 2022Updated 3 years ago
- My Real World CTF challenges☆115Sep 19, 2019Updated 6 years ago
- ☆41Jul 23, 2018Updated 7 years ago
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆865Jul 21, 2019Updated 6 years ago
- 更快速的进行Web应用指纹识别☆171May 9, 2019Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- My CTF Challenges☆217Jan 4, 2026Updated 4 months ago
- Code-Audit-Challenges☆990Nov 17, 2018Updated 7 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,493Oct 12, 2024Updated last year
- 从wooyun中提取的payload,以及burp插件☆839Jun 17, 2022Updated 3 years ago
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,195Oct 17, 2023Updated 2 years ago
- Redis 4.x/5.x RCE☆978Nov 30, 2021Updated 4 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆775Aug 21, 2023Updated 2 years ago
- 上传漏洞fuzz字典生成脚本☆1,275Apr 1, 2021Updated 5 years ago
- web模糊测试 - 将漏洞可能性放大☆145Apr 23, 2019Updated 7 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Multi-language web CGI interfaces exploits.☆397Aug 22, 2022Updated 3 years ago
- ☆139Apr 19, 2021Updated 5 years ago
- Apache Solr Injection Research☆581Jan 28, 2020Updated 6 years ago
- dynamic crawler for web vulnerability scanner☆251Mar 15, 2026Updated last month
- 跟踪真实漏洞相关靶场环境搭建☆242Jul 19, 2018Updated 7 years ago
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆675Jul 16, 2023Updated 2 years ago
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,185Nov 10, 2021Updated 4 years ago
- Redis RCE 的几种方法☆90Jun 5, 2024Updated last year
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆964Jun 16, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- CVE-2019-2725 命令回显☆435May 8, 2023Updated 2 years ago
- 通过BurpSuite来构建自己的爆破字典,可以通过字典爆破来发现隐藏资产。☆503Jan 30, 2024Updated 2 years ago
- GitLab 11.4.7 SSRF配合redis远程执行代码☆120Apr 24, 2019Updated 7 years ago
- Code-Breaking Puzzles☆291Apr 6, 2025Updated last year
- Jboss_JMXInvokerServlet_Deserialization_RCE☆21Sep 3, 2019Updated 6 years ago
- 越权检测工具☆745Jun 17, 2022Updated 3 years ago
- WeblogicScanLot系列,Weblogic漏洞批量检测工具,V2.2☆180Aug 1, 2020Updated 5 years ago
- Python2编写的struts2漏洞全版本检测和利用工具☆1,413May 7, 2019Updated 7 years ago
- python webanalyzer☆147Jun 2, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆725Mar 21, 2022Updated 4 years ago
- 漏洞测试环境 - 方便写扫描器利用复现☆27Aug 12, 2019Updated 6 years ago
- Burp Suite Collaborator HTTP API☆45May 27, 2018Updated 7 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- Burp suite 分块传输辅助插件☆2,033Feb 23, 2022Updated 4 years ago
- Drupal8's REST RCE, SA-CORE-2019-003, CVE-2019-6340☆71Jun 10, 2020Updated 5 years ago
- 帮助java环境下任意文件下载情况自动化读取源码的小工具☆167Apr 5, 2019Updated 7 years ago