Alternatives and similar repositories for evilarc

Users that are interested in evilarc are comparing it to the libraries listed below

• TarlogicSecurity / Chankro
  Herramienta para evadir disable_functions y open_basedir
  ☆443Updated last year
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆680Updated 5 years ago
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,156Updated last month
• AonCyberLabs / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆787Updated last year
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆637Updated last year
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,102Updated 8 months ago
• PortSwigger / http-request-smuggler
  ☆1,097Updated this week
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆606Updated 4 years ago
• jmdx / TLS-poison
  ☆695Updated 8 months ago
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆633Updated 6 months ago
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,553Updated last year
• nongiach / sudo_inject
  [Linux] Two Privilege Escalation techniques abusing sudo token
  ☆718Updated 6 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆635Updated last year
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆400Updated 2 years ago
• zigoo0 / JSONBee
  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
  ☆723Updated last year
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆749Updated 3 years ago
• lucyoa / kernel-exploits
  ☆1,163Updated 8 years ago
• initstring / dirty_sock
  Linux privilege escalation exploit via snapd (CVE-2019-7304)
  ☆676Updated 6 years ago
• nccgroup / LoggerPlusPlus
  Advanced Burp Suite Logging Extension
  ☆674Updated last year
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,244Updated 7 months ago
• filedescriptor / untrusted-types
  ☆685Updated 3 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆887Updated 3 years ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,662Updated 8 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,425Updated 10 months ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆734Updated 2 years ago
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆578Updated 5 years ago
• PortSwigger / param-miner
  ☆1,363Updated this week
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆701Updated 3 months ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆373Updated last year
• Sjord / jwtcrack
  Crack the shared secret of a HS256-signed JWT
  ☆247Updated last year