rvermeulen / codeql-workshop-cve-2021-21380
A CodeQL workshop covering CVE-2021-21380
☆12Updated 4 months ago
Related projects: ⓘ
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆11Updated last year
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆23Updated 2 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 5 months ago
- ☆33Updated 2 years ago
- Collection of community-driven CodeQL query, library and extension packs☆64Updated last month
- Jupyter Kernel for CodeQL☆14Updated last year
- tetctf2020_amf_writeups☆23Updated 3 years ago
- ☆21Updated last month
- Same Origin XSS challenge☆56Updated 2 years ago
- Utility for creating ZipSlip archives☆66Updated last year
- An extension to use Semgrep inside Burp Suite.☆86Updated last year
- Compiled dataset of Java deserialization CVEs☆60Updated 4 years ago
- ☆54Updated 3 years ago
- Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…☆15Updated last year
- ☆24Updated 3 months ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Updated 2 years ago
- ZDI presentations, publications, whitepapers etc☆43Updated 11 months ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 4 years ago
- Authenticated SSRF in Grafana☆76Updated 2 months ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆33Updated last month
- tool that generates bypasses for open redirects☆47Updated 2 years ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- Apt style exploitation of Chrome 0day CVE-2023-4357☆42Updated 10 months ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆9Updated 4 years ago
- Several XStream gadgets ported from ysoserial☆32Updated 2 years ago
- My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition☆19Updated 4 years ago
- Custom / Experimental CodeQL queries☆37Updated 2 years ago
- A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications☆59Updated 3 years ago
- ☆28Updated 4 months ago