exploit for ImageMagick's uninitialized memory disclosure in gif coder
☆284Jul 22, 2017Updated 8 years ago
Alternatives and similar repositories for gifoeb
Users that are interested in gifoeb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SSRF (Server Side Request Forgery) testing resources☆2,502Oct 12, 2024Updated last year
- ☆428May 22, 2017Updated 9 years ago
- A tiny and cute URL fuzzer☆403Nov 10, 2022Updated 3 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,171Dec 16, 2024Updated last year
- a tiny tool for swf hacking, just browse it:)☆243Mar 13, 2013Updated 13 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Apache Solr Injection Research☆580Jan 28, 2020Updated 6 years ago
- CVE-2017-9506 - SSRF☆191Feb 14, 2022Updated 4 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆549Jun 12, 2017Updated 9 years ago
- ☆39Sep 23, 2019Updated 6 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆323Feb 7, 2018Updated 8 years ago
- Tool for CVE-2018-16323☆82Jan 17, 2019Updated 7 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆608May 17, 2019Updated 7 years ago
- secretz, minimizing the large attack surface of Travis CI☆327May 30, 2022Updated 4 years ago
- Client Side Prototype Pollution Scanner☆529Sep 17, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆277Oct 19, 2021Updated 4 years ago
- DNS Rebinding Exploitation Framework☆493Apr 27, 2021Updated 5 years ago
- Simple "postMessage logger" Chrome extension☆104May 2, 2020Updated 6 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Jul 1, 2016Updated 9 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)☆100Dec 24, 2019Updated 6 years ago
- Pentest/BugBounty progress control with scanning modules☆280Jul 16, 2020Updated 5 years ago
- ☆163Dec 7, 2017Updated 8 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆661Feb 1, 2025Updated last year
- Tool for catching and logging different types of requests.☆219Nov 20, 2020Updated 5 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- List DTDs and generate XXE payloads using those local DTDs.☆661Feb 21, 2024Updated 2 years ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆205Feb 15, 2024Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆122Sep 12, 2020Updated 5 years ago
- Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)☆362Jan 11, 2020Updated 6 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆683Jan 28, 2024Updated 2 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆155Feb 15, 2021Updated 5 years ago
- Content-Type Research☆667Jun 29, 2025Updated 11 months ago
- ☆196Jun 17, 2025Updated last year
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆583Sep 7, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Feb 5, 2019Updated 7 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆266Nov 18, 2021Updated 4 years ago
- ☆842Nov 13, 2023Updated 2 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆185May 27, 2020Updated 6 years ago
- HTTP file upload scanner for Burp Proxy☆419Apr 20, 2023Updated 3 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,155May 6, 2017Updated 9 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆802Nov 7, 2021Updated 4 years ago