mpaxson / ctf
Technical Write-ups for the cyber security challenges on the web today
☆15Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for ctf
- Generic Command Exploitation Engine for exploiting web application command-injection bugs,.☆31Updated 11 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Check for .net padding oracle patch☆19Updated 6 years ago
- ☆0Updated 5 years ago
- Helper scripts to assist penetration testing and exploit development☆35Updated last year
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Communicate with a remote shell easily☆12Updated 6 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 3 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated last year
- Website to Scrapping all writeup from http://ctftime.org/ and you can organize which to read first!☆31Updated 7 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- ☆18Updated 5 years ago
- Generate pentest reports based on github issues.☆17Updated last year
- Simplified version of Forshaw's Diaghub Collector Exploit☆30Updated 5 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated 9 months ago
- Small subset of Bash and Python scripts which could be used for rapid network recon☆12Updated 2 years ago
- Python library created while solving the Matasano Cryptopals challenges☆17Updated 3 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Updated 6 years ago
- Repository to host scripts discussed in https://www.notsosecure.com/crafting-way-json-web-tokens/☆14Updated 6 years ago
- Offline Security Focus Database☆31Updated 11 years ago
- My Shellcode Archive☆28Updated 7 years ago
- Collection of things made during my SLAE 32-bit journey☆14Updated 2 years ago
- Scripts for OSCE☆18Updated 5 years ago
- ☆23Updated 7 years ago
- PDF report generator for basic recon☆9Updated 6 years ago
- BurpSuite Pro Python Extension☆18Updated 11 years ago
- eXtremely fast data eXtraction via blind SQL injection☆14Updated 12 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Personal blog about security, exploitation, CTFs, ...☆21Updated 5 years ago