paralax / xss-labs
small set of scripts to practice exploit XSS and CSRF vulnerabilities
☆60Updated 7 years ago
Alternatives and similar repositories for xss-labs:
Users that are interested in xss-labs are comparing it to the libraries listed below
- Happy Hunting☆137Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆117Updated 4 years ago
- ☆78Updated 10 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 5 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆61Updated 6 years ago
- Easy Fast recon script☆29Updated 5 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆141Updated 6 years ago
- burpsuite extension for check and extract sensitive request parameter☆113Updated 4 years ago
- ☆127Updated 3 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…☆111Updated 7 years ago
- ☆106Updated 8 years ago
- sqliv modified by Ali0th☆13Updated 7 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆101Updated 5 years ago
- XSS Scan☆104Updated 11 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆76Updated 6 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆71Updated 7 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆43Updated 3 years ago
- JBoss JMXInvokerServlet JMXInvoker 0.3 - Remote Command Execution 漏洞批量检测☆67Updated 9 years ago
- This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…☆32Updated 8 years ago
- Converts the Masscan XML output option (-oX) to a csv format.☆56Updated 6 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆76Updated 7 years ago
- PHP代码审计分段讲解☆26Updated 7 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- List of Awesome Red Teaming Resources☆45Updated 7 years ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆52Updated 4 years ago
- CVE-2019-6340-Drupal SA-CORE-2019-003☆32Updated 6 years ago