polyhedraltech / SecurityTesting
Eclipse plugin suite providing integration with security testing tools.
☆11Updated 8 years ago
Related projects: ⓘ
- Tainted PhantomJS☆53Updated 9 years ago
- cve-2014-0130 rails directory traversal vuln☆18Updated 7 years ago
- ☆42Updated this week
- ☆35Updated this week
- ☆70Updated 6 years ago
- XXE OOB Exploitation Toolset for Automation☆63Updated 10 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Updated 10 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆39Updated 8 years ago
- A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.☆42Updated 5 years ago
- ☆17Updated this week
- Deliberately vulnerable web application☆22Updated 7 years ago
- Demo Application and Exploit☆35Updated 7 years ago
- Files from Zeronights presentation.☆28Updated 11 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 7 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆45Updated 11 years ago
- Burp extension to passively scan for applications revealing software version numbers☆30Updated 3 months ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 8 years ago
- PHDAYS |||☆17Updated 11 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆22Updated 6 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆43Updated 7 years ago
- Study about HQL injection exploitation.☆48Updated 8 years ago
- Spray SMB with hashes, Then psexec☆32Updated 5 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- ☆28Updated this week
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 5 years ago
- Simple socket-based gateway to the Burp Collaborator☆33Updated 7 years ago
- Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).☆13Updated last year
- Hackerone disclosed report URL Aggregator☆29Updated 5 years ago
- Custom Fortify SCA rules to detect common JSSE certification validation flaws☆11Updated 8 years ago
- Axis2 RPC Shell☆15Updated 9 years ago