securi3ytalent / xray-automationLinks
A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document before using.
☆20Updated last year
Alternatives and similar repositories for xray-automation
Users that are interested in xray-automation are comparing it to the libraries listed below
Sorting:
- Burp extension used to snip any header from all the requests.☆23Updated 2 years ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 11 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆25Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Updated 11 months ago
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆17Updated last year
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆22Updated last year
- Auto exploitation tool for CVE-2024-24401.☆36Updated last year
- Keycloak admin API allows low privilege users to use administrative functions☆27Updated last year
- Monitor your target continuously for new subdomains!☆25Updated 2 years ago
- ☆38Updated 11 months ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Updated last year
- A C2 framework for all your God Complex. A fully functional and integrated Botnet for remote command execution through user friendly UI.☆45Updated 2 years ago
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆48Updated 10 months ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated 2 weeks ago
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Updated 11 months ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated 2 years ago
- POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.☆35Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- aiohttp LFI (CVE-2024-23334)☆27Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- ☆13Updated last year
- POC for CVE-2024-31982: XWiki Platform Remote Code Execution > 14.10.20☆10Updated last year
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last week
- ☆19Updated 11 months ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated last year