mandiant / route-sixty-sink
Link sources to sinks in C# applications.
☆139Updated last year
Related projects: ⓘ
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆69Updated 2 years ago
- A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications☆59Updated 3 years ago
- A python script to merge multiple jar files for easier debugging via JD-Eclipse☆61Updated last year
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆106Updated 3 years ago
- Proof-of-concept code for various bugs☆106Updated 5 months ago
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆136Updated last year
- PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)☆125Updated 3 years ago
- Scans for .NET Deserialization Bugs in .NET Assemblies☆77Updated 4 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆51Updated 3 months ago
- Source Code Management Attack Toolkit☆209Updated 2 years ago
- Recurrent Neural Network SubDomain Discovery Tool☆90Updated 2 years ago
- ☆145Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆84Updated 5 months ago
- Utility for creating ZipSlip archives☆66Updated last year
- ☆173Updated 6 months ago
- DupeKeyInjector☆134Updated 2 years ago
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆54Updated last year
- Repository to store exploits created by Assetnotes Security Research team☆175Updated 10 months ago
- Collected && Written N day Vulns for study purpose only☆104Updated last week
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- Finding Java gadget chains with CodeQL☆158Updated last month
- ☆18Updated last year
- ☆277Updated 2 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆87Updated 2 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆167Updated 3 years ago
- Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.☆118Updated 2 months ago
- POC for NetworkService PrivEsc☆122Updated 4 years ago
- An extension to use Semgrep inside Burp Suite.☆86Updated last year
- Vulnerable thick client applications used as examples in the Introduction to Hacking Desktop Applications blog series☆96Updated 8 months ago
- ☆151Updated last year