p4k03n4t0r / http-request-smuggling

Related projects ⓘ

Alternatives and complementary repositories for http-request-smuggling

• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• GoSecure / request-smuggling-workshop
  ☆23Updated last year
• ariary / HTTPCustomHouse
  HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets
  ☆33Updated 2 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆59Updated 2 weeks ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆59Updated last year
• strellic / my-ctf-challenges
  a repository of all the CTF challenges I've made for public events
  ☆50Updated last year
• zeyu2001 / My-CTF-Challenges
  Challenges I wrote for various CTF competitions
  ☆40Updated 4 months ago
• ryanking13 / ctf-cheatsheet
  CTF, wargame cheatsheet
  ☆30Updated 5 years ago
• yuriisanin / svg2raster-cheatsheet
  A cheatsheet for exploiting server-side SVG rasterization.
  ☆29Updated 2 years ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆46Updated 5 months ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆52Updated 5 months ago
• defparam / haptyc
  ☆92Updated 3 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 3 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆22Updated last month
• TheGrandPew / Sanity
  ☆15Updated 3 years ago
• garlic0x1 / php-analyzer
  Simple taint analyzer for PHP/WordPress using VKCOM/php-parser
  ☆18Updated 2 years ago
• Hakumarachi / WriteUp
  CTF challenges WriteUp
  ☆14Updated 2 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆81Updated last year
• albinowax / albinowaxUtils
  ☆13Updated 2 months ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆49Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆45Updated last month
• CaptainFreak / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆26Updated 3 years ago
• pry0cc / nmap-to-ports
  Pipe nmap verbose output to a usable format for httpx or host:port notation.
  ☆15Updated 2 years ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆25Updated 9 months ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 6 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago