securi3ytalent / xray-automationLinks
A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document before using.
☆20Updated last year
Alternatives and similar repositories for xray-automation
Users that are interested in xray-automation are comparing it to the libraries listed below
Sorting:
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 10 months ago
- Burp extension used to snip any header from all the requests.☆23Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆25Updated last year
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆17Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated last year
- ☆38Updated 10 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆24Updated last year
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆48Updated 9 months ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Updated 11 months ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆28Updated last year
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆44Updated last year
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Updated last year
- Monitor your target continuously for new subdomains!☆24Updated 2 years ago
- Auto exploitation tool for CVE-2024-24401.☆36Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- ☆46Updated 7 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Updated last year
- Keycloak admin API allows low privilege users to use administrative functions☆27Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated last year
- POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.☆35Updated last year
- Automated HTTP Request Repeating With Burp Suite☆40Updated 2 years ago
- ☆13Updated last year
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆25Updated last year
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆21Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆12Updated 10 months ago
- CVE-2024-27198 & CVE-2024-27199 PoC - RCE, Admin Account Creation, Enum Users, Server Information☆31Updated last year