oppsec / tomcter
πΉ Bruteforce Apache Tomcat manager login with default credentials
β101Updated 11 months ago
Alternatives and similar repositories for tomcter:
Users that are interested in tomcter are comparing it to the libraries listed below
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectorsβ84Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.β74Updated last year
- CVE Collection of jQuery UI XSS Payloadsβ118Updated 2 years ago
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.β80Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the intβ¦β113Updated 2 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticalsβ¦β65Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.β69Updated 11 months ago
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POCβ119Updated last year
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)β87Updated 2 years ago
- β34Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HEβ52Updated 3 months ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!β94Updated last year
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluenceβ75Updated last year
- BChecks collection for Burp Suite Professionalβ92Updated 8 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.β253Updated 9 months ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to β¦β49Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.β44Updated 11 months ago
- Exploits targeting vBulletin.β76Updated last year
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverageβ¦β64Updated 2 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerabilityβ56Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secureβ90Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)β75Updated 8 months ago
- Authentication Bypass in GoAnywhere MFTβ61Updated last year
- Web cache poisoning vulnerability scanner.β64Updated 2 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.β39Updated 2 years ago
- β52Updated 2 years ago
- Custom scan profiles for use with Burp Suite Proβ121Updated 11 months ago
- Text4Shell scanner for Burp Suiteβ189Updated 2 years ago
- A command-line utility for performing reverse DNS lookupsβ67Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profitβ63Updated last year