samwcyo / CVE-2021-27651-PoC

Related projects ⓘ

Alternatives and complementary repositories for CVE-2021-27651-PoC

• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆48Updated 2 years ago
• redhuntlabs / BurpSuite-Asset_History
  ☆33Updated 4 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆30Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆61Updated 4 years ago
• ZephrFish / CVE-2021-22893_HoneyPoC2
  DO NOT RUN THIS.
  ☆47Updated 3 years ago
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆22Updated 3 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 5 years ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆77Updated 4 months ago
• Co0nan / ParamsExtractor
  A burp-suite plugin that extract all parameter names from in-scope requests
  ☆29Updated 3 years ago
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆44Updated 2 years ago
• chopicalqui / TurboDataMiner
  The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…
  ☆54Updated last year
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• GoSecure / request-smuggling-workshop
  ☆23Updated last year
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆45Updated 3 years ago
• jayateertha043 / FireOver
  A FireBase DataBase TakeOver Tool along with POC Generator
  ☆33Updated 3 years ago
• vortexau / cdn
  Compiles a list of major CDN and WAF subnets.
  ☆63Updated this week
• onurgule / S4S-Scanner
  Spring4Shell Burp Scanner
  ☆65Updated 2 years ago
• assetnote / jira-mobile-ssrf-exploit
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆87Updated 2 years ago
• bp0lr / dmut-resolvers
  public dns server list for dmut project
  ☆18Updated 11 months ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 2 years ago
• PortSwigger / ator
  ☆29Updated 6 months ago
• AlteredSecurity / CVE-2021-38647
  CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD
  ☆68Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆73Updated 4 years ago
• S1lkys / CVE-2020-15906
  Writeup of CVE-2020-15906
  ☆44Updated 4 years ago
• cygenta / CVE-2020-3452
  ☆26Updated 2 years ago
• kahla-sec / CVE-2021-27850_POC
  A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.
  ☆5Updated last year