paralax / xss-labs

Related projects: ⓘ

• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 5 years ago
• owtf / wafbypasser
  ☆78Updated 9 years ago
• C1h2e1 / Recon
  Easy Fast recon script
  ☆29Updated 5 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆105Updated 5 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆72Updated 3 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆108Updated 5 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆112Updated 4 years ago
• arbazkiraak / web-cache-deception-checker
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆43Updated 2 years ago
• jas502n / CVE-2019-16278
  Directory transversal to remote code execution
  ☆69Updated 4 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆137Updated 5 years ago
• Audi-1 / Awesome-Red-Teaming
  List of Awesome Red Teaming Resources
  ☆43Updated 6 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• jas502n / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows - CGI-BIN
  ☆75Updated 5 years ago
• IdealDreamLast / CVE-2020-9484
  用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞
  ☆52Updated 4 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆185Updated 4 years ago
• masahiro331 / CVE-2020-9484
  ☆126Updated 2 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 5 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆110Updated 6 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆60Updated 5 years ago
• brianwrf / WordPress_4.9.8_RCE_POC
  A simple PoC for WordPress RCE (author priviledge), refer to CVE-2019-8942 and CVE-2019-8943.
  ☆74Updated 5 years ago
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆102Updated 4 years ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 4 years ago
• 7kbstorm / Red-Teaming-Toolkit
  A collection of open source and commercial tools that aid in red team operations.
  ☆37Updated 6 years ago
• StefanMichielse / generate_xxe_payloads
  This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…
  ☆32Updated 8 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆160Updated last year
• jas502n / cve-2019-2618
  Weblogic Upload Vuln(Need username password)-CVE-2019-2618
  ☆172Updated 5 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆135Updated 6 years ago
• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆209Updated 6 years ago
• laconicwolf / Masscan-to-CSV
  Converts the Masscan XML output option (-oX) to a csv format.
  ☆56Updated 5 years ago