noxvix / Xss-Exploitation
A PHP script demonstrating cookie stealing by capturing and logging request information, including the victim's cookie, IP address, HTTP referer, user agent, and geographical details. This educational tool serves to illustrate the importance of proper cookie handling and security practices. Use responsibly.
☆35Updated last year
Alternatives and similar repositories for Xss-Exploitation:
Users that are interested in Xss-Exploitation are comparing it to the libraries listed below
- F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.☆17Updated 2 years ago
- PassBreaker☆60Updated last year
- xdebug 2.5.5 RCE exploit☆30Updated 2 months ago
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It provides…☆13Updated 10 months ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆23Updated 2 years ago
- Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.☆47Updated 10 months ago
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆29Updated last year
- Tool for bypassing logins vulnerable against SQL injection☆45Updated last year
- Windows Reverse TCP Shell for Hacking and Pentesting☆24Updated 7 months ago
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆38Updated last year
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆30Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆34Updated last year
- Generate Undetectable Metasploit Payload in a simple way☆38Updated last year
- VLAN attacks toolkit☆14Updated 2 years ago
- Hacking with PasteJacking technique☆21Updated 9 months ago
- Ded Security Framework is a tool aimed at security professionals☆34Updated 10 months ago
- This is a working variant of the Mirai IOT botnet☆13Updated 2 years ago
- Simple python OSINT tool for urls recon thanks to the waybackmachine.☆39Updated last year
- ProxyChecker Made in NodeJS☆36Updated 3 years ago
- ☆13Updated 2 weeks ago
- A Powerfull Windows Ransomware with a Fully Undetectable Persistent Backdoor | System Halt Attack etc☆24Updated 3 years ago
- This Python script provides functionality to encode PowerShell commands while preserving the environment variables. It's especially usefu…☆16Updated 11 months ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated 2 years ago
- Mass bruteforce authentication of common services with common credentials.☆47Updated last year
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆22Updated last year
- A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticat…☆8Updated 11 months ago
- Highly configurable script for dictionary/spray attacks against online web applications.☆53Updated 2 years ago
- ScanExp automates the scanning of any machine's open ports via the ip address and performs a brute force attack on ports 20, 21 for the F…☆26Updated last year
- Brute forcing login pages with SQL Injection queries with cURL☆17Updated 2 years ago
- Herramienta en Bash ideal para extraer la información más relevante de un dominio vía rpcclient.☆17Updated last year