Nodejs application intentionally vulnerable to SSRF
☆42May 12, 2023Updated 2 years ago
Alternatives and similar repositories for Nodejs-SSRF-App
Users that are interested in Nodejs-SSRF-App are comparing it to the libraries listed below
Sorting:
- Everything you need to exploit overly permissive crossdomain.xml files☆86Nov 12, 2014Updated 11 years ago
- Zone transfers for rwhois☆20Feb 27, 2019Updated 7 years ago
- XXE attack tool☆31Feb 20, 2016Updated 10 years ago
- A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for t…☆15Jun 3, 2016Updated 9 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 8 years ago
- A set of vulnerable PHP scripts used to test w3af's vulnerability detection features.☆28Apr 15, 2015Updated 10 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Jul 6, 2013Updated 12 years ago
- based on search engine and get the valid infomation to test the vulnerability☆16Jun 16, 2016Updated 9 years ago
- HTTP requests of FrontPage expolit☆25Dec 19, 2013Updated 12 years ago
- ☆11Dec 5, 2020Updated 5 years ago
- ☆34Oct 1, 2019Updated 6 years ago
- A security write-up about the Paypal API & data leakage☆25May 27, 2016Updated 9 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- Describe how to use ffuf different options with examples☆13Jun 13, 2022Updated 3 years ago
- 介绍:这个是用来分享大家学习中使用的资料的,一个人学习,不如大家一起学习 基于adobe提供的一个文件帐号,来达到共享学习资料的模式,建议都传pdf的文档上来 国内登录,有些慢,需要一点耐心,但是能实现各个终端同步阅读pdf,同时又不用泄漏其他比较隐私的账号 网址:h…☆12Sep 18, 2014Updated 11 years ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 5 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Sep 30, 2018Updated 7 years ago
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Sep 11, 2021Updated 4 years ago
- Web Application Security☆130Jan 6, 2026Updated last month
- A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.☆25Jan 4, 2017Updated 9 years ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆100Jul 29, 2019Updated 6 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Jul 20, 2022Updated 3 years ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆136Mar 18, 2017Updated 8 years ago
- burp extender for fuzzing☆10Aug 10, 2018Updated 7 years ago
- ☆12May 9, 2017Updated 8 years ago
- A docker example for privilege escalation☆25Jul 17, 2017Updated 8 years ago
- Exploit insecure crossdomain.xml files.☆26Apr 25, 2017Updated 8 years ago
- Break Apps with Frida workshop material☆46Oct 17, 2017Updated 8 years ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Apr 14, 2018Updated 7 years ago
- XMPP Man-in-the-Middle, quick & dirty☆41Feb 24, 2014Updated 12 years ago
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- Python tool to check for expired domains still allowed in crossdomain.xml files☆13Jan 11, 2017Updated 9 years ago
- ☆15Apr 13, 2021Updated 4 years ago
- ☆10Aug 8, 2015Updated 10 years ago
- Test domain expiration dates.☆12Dec 2, 2022Updated 3 years ago
- ☆55May 30, 2017Updated 8 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Feb 26, 2019Updated 7 years ago
- Damn Vulnerable Thick Client App☆155Jul 16, 2020Updated 5 years ago