paralax / xss-labs
small set of scripts to practice exploit XSS and CSRF vulnerabilities
☆60Updated 7 years ago
Alternatives and similar repositories for xss-labs:
Users that are interested in xss-labs are comparing it to the libraries listed below
- Happy Hunting☆137Updated 6 years ago
- Easy Fast recon script☆29Updated 5 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆105Updated 5 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆61Updated 6 years ago
- ☆78Updated 10 years ago
- ☆127Updated 3 years ago
- XSS Scan☆104Updated 11 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆128Updated 4 years ago
- PHP代码审计分段讲解☆26Updated 7 years ago
- A vulnerable application exposing Spring Boot Actuators☆121Updated 5 years ago
- Vulnerable web application☆79Updated 2 years ago
- Weblogic Upload Vuln(Need username password)-CVE-2019-2618☆172Updated 5 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆43Updated 3 years ago
- This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…☆32Updated 8 years ago
- ☆106Updated 8 years ago
- Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.☆99Updated 3 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆103Updated 5 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆95Updated 2 years ago
- A collection of open source and commercial tools that aid in red team operations.☆37Updated 6 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…☆110Updated 7 years ago
- Explib: Collections of poc and exp.☆21Updated 6 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆71Updated 6 years ago
- A tool for automatically testing whether the upload function can upload webshell☆55Updated 4 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆77Updated 5 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 7 years ago