r0oth3x49 / Xpath
A python based cross-platform tool that automates the process of detecting and exploiting error-based injection security flaws.
☆137Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Xpath
- Bypassing WAF by abusing SSL/TLS Ciphers☆302Updated 3 years ago
- Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for…☆142Updated 4 years ago
- CVE-2017-9506 - SSRF☆187Updated 2 years ago
- Toolset for detecting reflected xss in websites☆109Updated 6 years ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers☆273Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 2 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆113Updated 2 years ago
- Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.☆219Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated last month
- Local File Inclusion Exploitation Tool (mirror)☆122Updated 7 years ago
- B4TM4N ~ PHP WEBSHELL☆187Updated 4 months ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- CVE-2018-6389 Exploit In WordPress DoS☆79Updated 6 years ago
- The unofficial HackerOne disclosure Timeline☆135Updated 5 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆295Updated 5 years ago
- Relational database brute force and post exploitation tool for MySQL and MSSQL☆218Updated 5 months ago
- CMS Scanner Framework☆130Updated 2 weeks ago
- small set of scripts to practice exploit XSS and CSRF vulnerabilities☆58Updated 6 years ago
- Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity☆198Updated 3 years ago
- This python script is developed to show, how many vulnerables websites, which are laying around on the web. 1) Scan net for urls prone to…☆54Updated 7 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆135Updated 3 years ago
- An Exploit framework for Web Vulnerabilities written in Python☆171Updated 4 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆137Updated 5 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆109Updated 5 years ago
- Resolve and quickly portscan a list of (sub)domains.☆85Updated 8 years ago
- Burp Suite extension to discover assets from HTTP response.☆219Updated 3 years ago
- dns rebind tool with custom scripts☆75Updated last year
- 🐚 404 Page Not Found Webshell☆84Updated 2 years ago
- Java serialization brute force attack tool.☆124Updated 7 years ago
- Web Crawler, Scanner, and Analyzer Framework (Shell-Script based)☆98Updated 5 years ago