mrmtwoj / apache-vulnerability-testing
Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-38475 , CVE-2024-38474 , CVE-2024-38473 , CVE-2023-38709
☆86Updated 5 months ago
Alternatives and similar repositories for apache-vulnerability-testing:
Users that are interested in apache-vulnerability-testing are comparing it to the libraries listed below
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆60Updated 5 months ago
- his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulne…☆85Updated 2 weeks ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆94Updated 6 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆114Updated 3 months ago
- ☆58Updated last year
- ☆57Updated last month
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated last month
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 9 months ago
- ☆118Updated last year
- ☆48Updated 9 months ago
- I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…☆75Updated 5 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆39Updated last year
- CVE-2024-3400-RCE☆87Updated 11 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆33Updated last month
- Grep subdomains from web pages.☆42Updated last month
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆85Updated 7 months ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- GeoServer Remote Code Execution☆78Updated 7 months ago
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆118Updated 8 months ago
- CVE Collection of jQuery XSS Payloads☆70Updated 2 years ago
- A fast subdomain takeover tool☆74Updated last year
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆135Updated 5 months ago
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆117Updated last year
- A passive way to find backups/ sensitive information.☆72Updated 2 months ago
- ☆39Updated last month
- Will attempt to retrieve DB details for FastAdmin instances☆62Updated 7 months ago
- Unauthenticated RCE on CraftCMS when PHP `register_argc_argv` config setting is enabled☆41Updated 3 months ago
- CVE-2025-24016: RCE in Wazuh server! Remote Code Execution☆29Updated last month
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆90Updated last year