nodyhub / zipslipperLinks
Create tar/zip archives that try to exploit zipslip vulnerability.
☆47Updated 11 months ago
Alternatives and similar repositories for zipslipper
Users that are interested in zipslipper are comparing it to the libraries listed below
Sorting:
- A steampipe plugin to query projectdiscovery.io tools.☆27Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 7 months ago
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆43Updated last year
- ☆59Updated 2 years ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated 2 years ago
- Additional active scan checks for BURP☆28Updated 10 months ago
- Exploits Unauth Docker API☆41Updated 4 months ago
- An Evil OIDC Server☆53Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆42Updated last year
- ☆80Updated 3 weeks ago
- Determine privileges from cloud credentials via brute-force testing.☆69Updated last year
- ☆50Updated last year
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆73Updated last year
- Java archive implant toolkit.☆61Updated 4 months ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆42Updated last year
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆67Updated last year
- Find what egress ports are allowed☆42Updated 2 years ago
- Hijack a slack bot to phish your way in☆56Updated last month
- self-hosted Azure OSINT tool☆31Updated 2 months ago
- Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"☆15Updated last year
- ☆27Updated 2 years ago
- Establishes mutually trusted TLS connections based on a pre-shared connection key.☆50Updated last year
- A GitHub Actions Supply Chain CTF / Goat☆24Updated last week
- A stealthy reverse shell built with native PowerShell and Server-Sent Events (SSE). No polling. No sockets. Just pure HTTP and real-time …☆20Updated 4 months ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆24Updated 10 months ago
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆66Updated 11 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- AWS Testing and Reporting Management Tool☆20Updated 2 years ago
- Manage attack surface data on Elasticsearch☆22Updated last year