sea-kg / ctf01d

Related projects ⓘ

Alternatives and complementary repositories for ctf01d

• C4T-BuT-S4D / S4DFarm
  Attack & Defense CTF Farm based on DestructiveFarm
  ☆77Updated last week
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆134Updated 2 months ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆74Updated 5 years ago
• ambionics / wrapwrap
  Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
  ☆177Updated last month
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆101Updated 8 months ago
• HackerDom / ructf-finals-2023
  Developed with ♥ by Hackerdom team
  ☆20Updated last year
• pomo-mondreganto / ForcAD
  Pure-python distributable Attack-Defence CTF platform, created to be easily set up.
  ☆152Updated 11 months ago
• C4T-BuT-S4D / stay-home-ctf-2022
  C4T BuT S4D Attack-Defence CTF
  ☆12Updated 2 years ago
• k1rurk / check_bitrix
  Check bitrix vulnerabilities
  ☆66Updated 10 months ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆50Updated 2 years ago
• silentsignal / rsa_sign2n
  Deriving RSA public keys from message-signature pairs
  ☆271Updated 6 months ago
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆215Updated last year
• HITB-CyberWeek / hitbsecconf-ctf-2022
  HITB SECCONF CTF 2022. Developed with ❤️ by Hackerdom team and HITB.
  ☆19Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆84Updated 5 months ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆116Updated 11 months ago
• reewardius / bbFuzzing.txt
  ☆263Updated last month
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆113Updated 5 years ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆138Updated 3 months ago
• cfreal / ten
  A (small) web exploit framework
  ☆79Updated last month
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆163Updated 7 months ago
• jhonnybonny / nuclei-templates-bitrix
  Some nuclei templates for pentest CMS Bitrix
  ☆23Updated 4 months ago
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆270Updated last year
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆39Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆60Updated 2 weeks ago
• s-3ntinel / imgjs_polygloter
  ☆22Updated 3 years ago
• neex / 1u.ms
  ☆166Updated 3 years ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆252Updated 4 months ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆86Updated 9 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year