sUbc0ol / Apache-Struts2-RCE-Exploit-v2-CVE-2017-5638Links
☆13Updated 8 years ago
Alternatives and similar repositories for Apache-Struts2-RCE-Exploit-v2-CVE-2017-5638
Users that are interested in Apache-Struts2-RCE-Exploit-v2-CVE-2017-5638 are comparing it to the libraries listed below
Sorting:
- WhiteBox CMS analysis☆68Updated 2 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- A collection of scripts used to interact with the Burp Rest API☆55Updated 6 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆42Updated 8 years ago
- Various tools for managing bug bounty recon and exploration.☆48Updated 3 years ago
- Post-exploitation scripts for OS X persistence and privesc☆73Updated 8 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆77Updated 7 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 7 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 7 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 12 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 13 years ago
- Plaintext Password harvesting from Azure Windows VMs☆68Updated 7 years ago
- Collection of tools for privesc on Linux☆34Updated 12 years ago
- WORK IN PROGRESS. Waits for MSF session then automatically gets domain admin☆64Updated 3 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 8 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 5 years ago
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆29Updated 2 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆13Updated 7 years ago
- PHP tool to test XSS☆22Updated 6 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 5 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Updated 6 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago
- a collection of payloads for common webapps☆72Updated 12 years ago
- This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.☆59Updated 8 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 8 years ago