nahamsec / CMSFuzz
☆33Updated this week
Related projects: ⓘ
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 8 years ago
- Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…☆67Updated 4 months ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 7 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 5 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆51Updated 3 years ago
- ☆26Updated this week
- ☆42Updated this week
- XXE OOB Exploitation Toolset for Automation☆63Updated 10 years ago
- ☆35Updated this week
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆22Updated 6 years ago
- WhiteBox CMS analysis☆68Updated last year
- Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.☆46Updated 7 years ago
- Script to find exploitable magic methods for PHP object injection☆27Updated 9 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 6 years ago
- Babel Scripting Framework☆43Updated 3 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 6 years ago
- PoC for an adaptive parallelised DNS prober☆44Updated 6 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆24Updated 7 years ago
- CSV injection Vulnerable Script.☆29Updated 7 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 7 years ago
- Fingerprint a web app using local files as the fingerprint sources☆36Updated 7 years ago
- Projects and POCs☆58Updated 10 years ago
- ☆49Updated this week
- Collection of tools for privesc on Linux☆32Updated 11 years ago
- ☆75Updated this week
- Exploit insecure crossdomain.xml files.☆26Updated 7 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆25Updated 6 years ago
- misc pentest tools.☆26Updated 9 years ago