HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project contact me for private repository access with more tests.
☆49Dec 2, 2017Updated 8 years ago
Alternatives and similar repositories for HTTPWookiee
Users that are interested in HTTPWookiee are comparing it to the libraries listed below
Sorting:
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆18Mar 3, 2021Updated 5 years ago
- ☆35Nov 2, 2022Updated 3 years ago
- Try to detect HTTP desync attack (https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn)☆11Sep 20, 2019Updated 6 years ago
- CVE-2021-2109 && Weblogic Server RCE via JNDI☆31Jan 22, 2021Updated 5 years ago
- ☆15May 23, 2019Updated 6 years ago
- Security test tool for Blind XSS☆26Mar 5, 2020Updated 5 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- C# code to run PIC using CreateThread☆17Apr 19, 2019Updated 6 years ago
- BurpSuite Pro Python Extension☆18Jul 11, 2013Updated 12 years ago
- ☆15Jan 2, 2019Updated 7 years ago
- PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Or…☆96Jul 21, 2020Updated 5 years ago
- My CTF Challenges. No one plays.☆13Dec 4, 2022Updated 3 years ago
- notorious BIG IP☆15Aug 8, 2019Updated 6 years ago
- CVE-2020-8840:FasterXML/jackson-databind 远程代码执行漏洞☆37Feb 24, 2020Updated 6 years ago
- CVE-2020-11651: Proof of Concept☆40Jul 7, 2021Updated 4 years ago
- CVE-2020-5837 exploit☆43May 13, 2020Updated 5 years ago
- Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.☆35Mar 2, 2020Updated 6 years ago
- ☆10Apr 6, 2016Updated 9 years ago
- Remote Code Execution on Microsoft Exchange Server through fixed cryptographic keys☆22Jun 6, 2021Updated 4 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Apr 18, 2022Updated 3 years ago
- 🐛 A list of writeups from the MSRC (Microsoft) Bug Bounty program☆31Oct 29, 2025Updated 4 months ago
- justCTF 2019 challenges sources☆41Jun 9, 2021Updated 4 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆391Aug 15, 2024Updated last year
- Native Java serialization filter blacklist for common gadgets☆20Sep 12, 2019Updated 6 years ago
- LDAP Injection Vulnerability Application(Blog Sample Code)☆22Oct 4, 2018Updated 7 years ago
- ☆1,187Jan 21, 2026Updated last month
- Exactly what it sounds like, which is something rad☆22Oct 12, 2022Updated 3 years ago
- Proof of Concept for CVE-2020-0601☆65Mar 22, 2024Updated last year
- ☆51Jul 20, 2020Updated 5 years ago
- Slides and videos from talks given at cons☆25Jun 19, 2025Updated 8 months ago
- Study about HQL injection exploitation.☆51May 15, 2016Updated 9 years ago
- Official plugins for IO Ninja☆28Feb 13, 2026Updated 2 weeks ago
- Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit☆92Feb 27, 2024Updated 2 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆346Nov 20, 2022Updated 3 years ago
- laravel 5.8 rce pop chain☆26Oct 27, 2019Updated 6 years ago
- ☆26Dec 29, 2021Updated 4 years ago
- A collection of commands, scripts, tips, tricks, and other information compiled during my journey to obtaining the OSCP certification.☆25Dec 13, 2020Updated 5 years ago
- A basic proxylogon scanner☆27Aug 11, 2021Updated 4 years ago
- Collection of scripts that aid in penetration testing of JSON Web Tokens☆59Feb 2, 2019Updated 7 years ago