Alternatives and similar repositories for ctf-cheatsheet

Users that are interested in ctf-cheatsheet are comparing it to the libraries listed below

• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 4 years ago
• cnotin / RazorVulnerableApp
  DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SS…
  ☆28Updated 5 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆64Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆124Updated 2 years ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆112Updated last year
• farisv / PIL-RCE-Ghostscript-CVE-2018-16509
  PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509
  ☆58Updated 4 years ago
• parrot409 / Parmy
  A extension for collecting parameters
  ☆25Updated 5 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• neex / ghostinthepdf
  ☆169Updated 4 years ago
• OlivierLaflamme / Auditing-Vulnerabilities
  In this repository I'll host my research and methodologies for auditing vulnerabilities
  ☆29Updated 5 years ago
• motikan2010 / CVE-2021-29447
  WordPress - Authenticated XXE (CVE-2021-29447)
  ☆42Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆48Updated 6 years ago
• CsEnox / CVE-2021-22911
  Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1
  ☆59Updated 2 years ago
• Universe1122 / smuggler.py
  HTTP request smuggling tools
  ☆18Updated 5 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆48Updated 4 years ago
• unicornsasfuel / sqlite_sqli_cheat_sheet
  A cheat sheet for attacking SQLite via SQLi
  ☆101Updated 9 years ago
• BlackFan / ctfs
  CTF writeups
  ☆30Updated 3 years ago
• GovTech-CSG / ProxyAgent
  ☆64Updated 3 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆116Updated 3 years ago
• fransr / hot-jar-swapping-urlclassloader
  Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
  ☆32Updated 2 years ago
• lanjelot / ctfs
  notes and code on past CTFs
  ☆103Updated 4 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆126Updated 6 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 4 years ago
• rekter0 / exploits
  ☆51Updated 3 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆128Updated 2 years ago
• vp777 / surferFTP
  SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
  ☆70Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆77Updated 5 years ago
• angelystor / potato-academy
  Some vulnerability research slides that I made
  ☆12Updated 3 years ago