no-sec-marko / java-web-vulnerabilities
Plattform to develop and experiment with existing java web attacks.
☆31Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for java-web-vulnerabilities
- Burp extension☆57Updated 6 years ago
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- Broken Link Hijacking Burp Extension☆55Updated 5 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated last year
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆49Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆28Updated 5 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- ☆31Updated 5 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated 5 months ago
- ☆22Updated 2 years ago
- ☆41Updated 4 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 5 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆73Updated 4 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆45Updated 3 years ago
- Kubernetes Scanner☆41Updated 2 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆14Updated 4 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- Vulnerable webapp testbed☆20Updated 8 years ago
- ☆35Updated 4 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- A tool that can take a URL or list of URL and prints back SAML consume URL.☆35Updated 5 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- Tool to try multiple paths for PHPunit RCE CVE-2017-9841☆26Updated 3 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated last year