orangetw / My-Presentation-Slides

Related projects: ⓘ

• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆772Updated 2 years ago
• httpvoid / writeups
  ☆1,169Updated 2 years ago
• RhinoSecurityLabs / CVEs
  A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
  ☆791Updated 2 months ago
• jmdx / TLS-poison
  ☆684Updated last year
• filedescriptor / untrusted-types
  ☆647Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆507Updated 2 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆343Updated last year
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆601Updated 7 months ago
• BlackFan / content-type-research
  Content-Type Research
  ☆464Updated 7 months ago
• duc-nt / RCE-0-day-for-GhostScript-9.50
  RCE 0-day for GhostScript 9.50 - Payload generator
  ☆539Updated 3 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆851Updated 6 months ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆331Updated last month
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆535Updated last year
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆672Updated 4 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆395Updated 2 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆663Updated last year
• PortSwigger / http-request-smuggler
  ☆950Updated 9 months ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆701Updated 3 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆398Updated 2 months ago
• BlackFan / client-side-prototype-pollution
  Prototype Pollution and useful Script Gadgets
  ☆1,374Updated 7 months ago
• orangetw / awesome-jenkins-rce-2019
  There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
  ☆603Updated 5 years ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆373Updated last year
• httpvoid / CVE-Reverse
  ☆277Updated 2 years ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• lockedbyte / CVE-Exploits
  PoC exploits for software vulnerabilities
  ☆676Updated 3 years ago
• RenwaX23 / XSSTRON
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆682Updated 3 years ago
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆546Updated 2 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆581Updated 3 years ago
• neex / http2smugl
  ☆527Updated 9 months ago
• jas502n / Grafana-CVE-2021-43798
  Grafana Unauthorized arbitrary file reading vulnerability
  ☆350Updated last year