orf / xcat_app
A XPath injection demonstration application
☆21Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for xcat_app
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Kubernetes Scanner☆41Updated 2 years ago
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 5 years ago
- ☆0Updated 5 years ago
- Full TTY reverse shell over SSH☆57Updated 4 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆49Updated 5 years ago
- Repo for proof of concept exploits and tools.☆56Updated 4 years ago
- Finally, reverse/bind shells written in python, encrypted with ssl!☆38Updated 5 years ago
- Study about HQL injection exploitation.☆49Updated 8 years ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- ☆35Updated 4 years ago
- Burp Commander written in Go☆57Updated 5 years ago
- ☆29Updated 6 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated last year
- A simple scanner to find and brute force tomcat manager logins☆28Updated 4 years ago
- ☆20Updated 4 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆38Updated 6 years ago
- A collection of OSCE preparation resources.☆23Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- Unauthenticated RCE at Woody Ad Snippets / CVE-2019-15858 (PoC)☆32Updated last year
- Data exfiltration using reflective DNS resolution covert channel☆51Updated 6 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆37Updated 6 years ago
- A burp extension to generate sqlmap PoC from target HTTP request.☆28Updated 7 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Generate pentest reports based on github issues.☆17Updated last year
- Discovers and exploits hosts vulnerable to MS08-067/MS17-010☆41Updated 6 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- YSOSERIAL Integration with burp suite☆40Updated 2 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆50Updated 2 years ago