securitysamurai / FuzzDB
A database of options to use when pen testing an application. Sample XSS, SQLi and much more. It's been gathered over time. It's not perfect, may have duplicates but it's a nice reference when needed.
☆16Updated 3 years ago
Related projects: ⓘ
- ☆12Updated this week
- LANGZI_SRC_安全巡航 是一款集成漏扫,验证,资产监控,自动复现并且生成结果表报的工具,实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。☆14Updated 5 years ago
- Nagios XI远程命令执行漏洞 <v5.6.9☆23Updated 4 years ago
- 个人使用的一款Web CMS指纹扫描器☆25Updated 4 years ago
- CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…☆26Updated 3 years ago
- 攻击Java Web应用-[Java Web安全]☆15Updated 3 years ago
- CVE-2019-2890 WebLogic 反序列化RCE漏洞☆41Updated 4 years ago
- 蚁剑其他脚本AES编/解码器☆36Updated 5 years ago
- ☆15Updated this week
- cobalt strike 自用脚本☆27Updated 3 years ago
- A fastjson payload generator☆56Updated 3 years ago
- Burpsuite Plugin For AES Crack☆37Updated 4 years ago
- some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute☆69Updated 3 years ago
- python3 写的一些权限维持脚本☆34Updated 4 years ago
- ☆39Updated this week
- mssql 终端连接工具|命令执行☆40Updated 4 years ago
- 基于BurpCollector的二次开发, 记录Burpsuite Site Map记录的里的数据包中的目录路径参数名信息,并存入Sqlite,并可导出txt文件。☆23Updated 5 years ago
- AntSword 出网探测插件☆22Updated 2 years ago
- Proof of concept for Weblogic CVE-2020-2883☆14Updated 4 years ago
- ☆19Updated 3 years ago
- 渗透测试复盘总结☆15Updated 4 years ago
- ☆11Updated this week
- CVE-2020-9548:FasterXML/jackson-databind 远程代码执行漏洞☆23Updated 4 years ago
- Java RCE 回显测试代码☆12Updated 3 years ago
- phpweb 前台任意文件上传☆17Updated 4 years ago
- ☆36Updated this week
- Citrix ADC从权限绕过到RCE☆46Updated 4 years ago
- ☆36Updated this week
- ☆15Updated this week
- autoType enable☆36Updated 4 years ago