p0dalirius / http-fuzzing-scripts
A collection of http fuzzing python scripts to fuzz HTTP servers for bugs.
☆15Updated last year
Alternatives and similar repositories for http-fuzzing-scripts:
Users that are interested in http-fuzzing-scripts are comparing it to the libraries listed below
- A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.☆12Updated 2 years ago
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆22Updated 10 months ago
- CVE-2022-30780 - lighttpd remote denial of service☆16Updated 10 months ago
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 years ago
- A webshell plugin and interactive shell for pentesting JoGet application.☆12Updated 2 years ago
- This repository presents a proof-of-concept of CVE-2023-22527☆13Updated 11 months ago
- Python script to check if there is any differences in responses of an application when the request comes from a search engine's crawler.☆20Updated last year
- A script to enumerate valid usernames based on the requests response times.☆18Updated 2 years ago
- A script to factorize integers with sagemath and factordb.☆11Updated last year
- A webshell plugin and interactive shell for pentesting a LimeSurvey application.☆17Updated 2 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated 2 months ago
- Command line tool to fetch, decode and brute-force CodeIgniter session cookies by guessing and bruteforcing secret keys.☆12Updated 10 months ago
- MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)☆16Updated 2 years ago
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆33Updated 3 months ago
- A python script to check if URLs are allowed or disallowed by a robots.txt file.☆21Updated 2 years ago
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆14Updated 5 months ago
- Multithreaded spraying of a password on all accounts of a domain.☆18Updated last month
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆46Updated last year
- Decode the values of common Windows properties such as userAccountControl and sAMAccountType.☆21Updated last year
- A Python script to find tenant id an region from a list of domain names.☆12Updated last year
- Ivanti EPM SQL Injection Remote Code Execution Vulnerability☆23Updated 7 months ago
- A Python script to parse Fortinet products serial numbers, and detect the associated model and revision.☆14Updated last year
- A python wrapper to run a command on against all users/computers/DCs of a Windows Domain☆28Updated 2 years ago
- A list of weird comparison in SQL☆14Updated 2 years ago
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆22Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.☆23Updated last year
- Scan for and exploit the zerologon vulnerability.☆10Updated 4 years ago
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆27Updated 2 years ago
- A collection of python scripts to work with Windows Hives.☆15Updated 2 years ago