pentagridsec / archive_pwn
A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
☆43Updated last year
Alternatives and similar repositories for archive_pwn:
Users that are interested in archive_pwn are comparing it to the libraries listed below
- Additional active scan checks for BURP☆26Updated 6 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 6 months ago
- ☆62Updated 4 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last month
- FireProx written in Go☆19Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 3 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- ☆32Updated 2 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- ☆27Updated last year
- List of fresh and validated DNS resolvers updated every 12h.☆22Updated this week
- Jumpstart multiple WebSocket servers quickly☆31Updated 3 years ago
- Take domains on stdin and output them on stdout if they get resolved☆33Updated 2 years ago
- ☆16Updated 4 months ago
- An Evil OIDC Server☆53Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- ☆17Updated 2 years ago
- self-hosted Azure OSINT tool☆29Updated 7 months ago
- an Evil Java RMI Registry.☆49Updated 2 years ago
- Collection of Semgrep rules for security analysis☆10Updated last year
- A multi-threaded password sprayer based on Medusa, built for distributed spraying.☆37Updated 3 years ago
- ☆30Updated 2 weeks ago
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- ☆26Updated 2 years ago
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆12Updated last year
- ☆12Updated 2 years ago
- Backend for Nuclear Pond☆21Updated last year
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆32Updated 2 years ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- ☆42Updated last week