nowak0x01 / PrestaXSRF
PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals vulnerabilities in PrestaShop E-Commerce
☆31Updated last year
Alternatives and similar repositories for PrestaXSRF:
Users that are interested in PrestaXSRF are comparing it to the libraries listed below
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated last year
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- Template Nuclei SSTI☆29Updated last year
- Burp extension used to snip any header from all the requests.☆22Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆28Updated 8 months ago
- This repository contains the best fuzzing wordlist files☆29Updated 4 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆30Updated 8 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 5 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 4 months ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Updated 10 months ago
- ☆17Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- Monitor your target continuously for new subdomains!☆26Updated 2 years ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆23Updated 9 months ago
- A BurpSuite extension for vulnerability Scanning☆26Updated last year
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated last year
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆22Updated 4 months ago
- CVE-2024-28955 Exploitation PoC☆34Updated 9 months ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- A Moodle Scanner☆40Updated 4 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated last year
- Recon scripts for Red Team and Web blackbox auditing☆23Updated last month
- backdoor exploit for vsftpd 2.3.4 on python☆15Updated last year
- List of MurmurHash3 favicon hashes of widely used technologies by vendor to search with Shodan.☆24Updated last year
- CVE-2023-7028☆59Updated last year
- Shellcode Tester Pro is a graphical interface tool for analysis, simulated execution, and reverse engineering of malicious shellcodes.☆22Updated last week
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆24Updated 8 months ago
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆40Updated 11 months ago