pakbch / File-Upload-XSS
File-Upload-XSS is a Python script that exploits the SVG XSS vulnerability in file upload services to gather information about users visiting a specific URL and send it to a Discord webhook.
☆17Updated 2 years ago
Alternatives and similar repositories for File-Upload-XSS
Users that are interested in File-Upload-XSS are comparing it to the libraries listed below
Sorting:
- it is malicious technique used by hackers to hide malware payloads in an encoded script in a specially crafted HTML attachment or web pag…☆122Updated last year
- The second version of SQL Hunter. SQLi Hunter is a URL (Blind) SQL injection checker for multiple pages.☆90Updated 2 years ago
- CVE-2023-32243 - Essential Addons for Elementor 5.4.0-5.7.1 - Unauthenticated Privilege Escalation☆81Updated last year
- Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server☆78Updated last year
- Yet Another PHP Shell - The most complete PHP reverse shell☆81Updated 3 years ago
- Python based Discord bot Which allows you to run tools like nmap and amass from discord☆27Updated 2 years ago
- A Complete SSRF (Server Side Request Forgery) Scanner.☆37Updated 3 months ago
- Create a fully undetectable backdoor with simple steps.☆74Updated 3 years ago
- An efficent Script To Generate FUD Persistent Reverse Shell For Red Teaming. Don't Upload Generated Stub On Virustotal☆78Updated last year
- Collection of Exploit, CVES(Unauthenticated) and Wordpress Scanners☆95Updated 2 years ago
- A couple of different scripts, made to automate attacks against NoSQL databases.☆63Updated last year
- POC Pdf-exploit builder on C#☆134Updated last year
- A PoC exploit for CVE-2024-25600 - WordPress Bricks Builder Remote Code Execution (RCE)☆39Updated last year
- HTML smuggling is a malicious technique used by hackers to hide malware payloads in an encoded script in a specially crafted HTML attachm…☆130Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.☆134Updated 7 months ago
- XSS cookie stealer using JavaScript and PHP☆65Updated 6 years ago
- ☆48Updated 11 months ago
- Magicspoofing it's a python script that checks & test SPF/DMARC DNS records an tries to spoof a domain with a open relay mail system.☆52Updated 2 months ago
- 「🐞」Bug Bounty Tricks☆38Updated last year
- Collect XSS vulnerable parameters from entire domain.☆151Updated 2 years ago
- Auto Scanner and Auto exploiter web app tool V4 Leaked by #GhostSec☆61Updated 3 years ago
- OpenSSH 9.1 vulnerability mass scan and exploit☆8Updated 2 years ago
- Generate FUD Droppers that are undetectable by popular AV's☆31Updated last year
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆100Updated last month
- shef - extract/scrape IPs from shodan without any API key☆50Updated 4 months ago
- Generate Undetectable Metasploit Payload in a simple way☆38Updated last year
- ☆170Updated 10 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆64Updated 11 months ago
- ☆10Updated 2 years ago