Alternatives and similar repositories for CVE-2019-5418

Users that are interested in CVE-2019-5418 are comparing it to the libraries listed below

• mpgn / Rails-doubletap-RCE
  RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
  ☆132Updated 2 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆327Updated 3 years ago
• mpgn / ByP-SOP
  🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️
  ☆202Updated 6 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆264Updated 4 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆87Updated 9 years ago
• incredibleindishell / CORS-vulnerable-Lab
  Sample vulnerable code and its exploit code
  ☆190Updated 4 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆104Updated 6 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆167Updated 6 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆289Updated 10 months ago
• ollseg / ttt-ext
  Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.
  ☆80Updated 6 years ago
• francesc-h / firebase
  Exploiting misconfigured firebase databases
  ☆124Updated 6 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆282Updated 5 years ago
• nccgroup / argumentinjectionhammer
  A Burp Extension designed to identify argument injection vulnerabilities.
  ☆121Updated 6 years ago
• neex / gifoeb
  exploit for ImageMagick's uninitialized memory disclosure in gif coder
  ☆284Updated 8 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆150Updated 7 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆110Updated 6 years ago
• infosec-au / enumXFF
  Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
  ☆223Updated 3 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 8 years ago
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆142Updated 4 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆105Updated 4 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆334Updated last year
• securitum / research
  research
  ☆151Updated last year
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆238Updated 7 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆224Updated 2 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆151Updated 2 years ago
• KINGSABRI / CVE-in-Ruby
  Exploits written & ported to Ruby - no Metasploit
  ☆81Updated 5 years ago
• jobertabma / unescape-room
  ☆35Updated 5 years ago