oppsec / tomcter
πΉ Bruteforce Apache Tomcat manager login with default credentials
β101Updated last year
Alternatives and similar repositories for tomcter:
Users that are interested in tomcter are comparing it to the libraries listed below
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POCβ117Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.β75Updated last year
- GeoServer Remote Code Executionβ76Updated 7 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticalsβ¦β65Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the intβ¦β113Updated 3 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.β253Updated 9 months ago
- CVE Collection of jQuery UI XSS Payloadsβ118Updated 2 years ago
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluenceβ75Updated last year
- A command-line utility for performing reverse DNS lookupsβ67Updated last year
- BChecks collection for Burp Suite Professionalβ93Updated 9 months ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectorsβ85Updated last year
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.β80Updated last year
- Encoder PHP webshell to bypass WAF using XOR operations.β53Updated last year
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.β49Updated 9 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HEβ53Updated 4 months ago
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)β87Updated 2 years ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.β74Updated 11 months ago
- Exploits targeting vBulletin.β76Updated last year
- Parse FFUF results in GUI with option to sort based by response code , size , keywordβ94Updated 6 months ago
- Burp Suite's extension to scan and crawl Single Page Applicationsβ102Updated last year
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.β39Updated 2 years ago
- Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)β110Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)β75Updated 9 months ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secureβ90Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerabilityβ58Updated last year
- Authentication Bypass in GoAnywhere MFTβ61Updated last year
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilitiβ¦β113Updated last year
- β38Updated last month
- Session Hijacking Visual Exploitationβ196Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)β115Updated last year