rm-onata / xmlrpc-attack
Exploiting the xmlrpc.php
☆43Updated last year
Alternatives and similar repositories for xmlrpc-attack:
Users that are interested in xmlrpc-attack are comparing it to the libraries listed below
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆89Updated 2 weeks ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆58Updated 5 months ago
- ☆118Updated last year
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆87Updated 7 months ago
- A passive way to find backups/ sensitive information.☆72Updated 2 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆94Updated 6 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆110Updated 3 months ago
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆86Updated 5 months ago
- ☆68Updated this week
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆60Updated 5 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆71Updated 2 months ago
- A collection of config files for linux focusing on hackthebox theme☆43Updated 3 months ago
- ☆147Updated 9 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆114Updated 3 months ago
- ☆51Updated 3 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆92Updated 2 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆121Updated 6 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- ☆58Updated last month
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆66Updated last year
- I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…☆75Updated 5 months ago
- Nodesub is a command-line tool for finding subdomains in bug bounty programs☆148Updated 8 months ago
- Helios: Automated XSS Testing☆147Updated 8 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆110Updated 5 months ago
- Nuclei-AI-Prompts☆179Updated last month
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated 2 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆45Updated this week
- Private Nuclei Templates☆97Updated last month
- A Powerful Recon Engine☆62Updated 4 months ago
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆146Updated 10 months ago