paralax / xss-labs
small set of scripts to practice exploit XSS and CSRF vulnerabilities
☆60Updated 7 years ago
Alternatives and similar repositories for xss-labs:
Users that are interested in xss-labs are comparing it to the libraries listed below
- Happy Hunting☆137Updated 6 years ago
- Easy Fast recon script☆29Updated 5 years ago
- ☆78Updated 10 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- XSS Scan☆104Updated 11 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆101Updated 5 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 5 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆61Updated 6 years ago
- WAF Bypass Cheatsheet☆212Updated 7 years ago
- Lab for exploring SSRF vulnerabilities☆246Updated 3 years ago
- ☆127Updated 3 years ago
- ☆56Updated 5 years ago
- Weblogic Upload Vuln(Need username password)-CVE-2019-2618☆172Updated 5 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- Java serialization brute force attack tool.☆122Updated 7 years ago
- This python script is developed to show, how many vulnerables websites, which are laying around on the web. 1) Scan net for urls prone to…☆54Updated 8 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆140Updated 6 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆137Updated 6 years ago
- ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…☆111Updated 7 years ago
- JBoss JMXInvokerServlet JMXInvoker 0.3 - Remote Command Execution 漏洞批量检测☆67Updated 9 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 7 years ago
- Decode the cookies set by balancer F5, and disclousure all pool ip☆77Updated 5 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆76Updated 5 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- A vulnerable application exposing Spring Boot Actuators☆121Updated 6 years ago
- A tool for automatically testing whether the upload function can upload webshell☆55Updated 4 years ago
- Apache Tomcat Remote Code Execution on Windows☆185Updated 5 years ago
- Web Fuzzing Discovery and Attack Pattern Database☆112Updated 6 years ago
- A Burp-Extension can hunt some keywords that might leak sensitive information.☆26Updated 5 years ago