shoebpate1 / Web-CTF-ChallengesLinks
Collection of quirky behaviours of code and the CTF challenges that I made around them.
☆28Updated 4 years ago
Alternatives and similar repositories for Web-CTF-Challenges
Users that are interested in Web-CTF-Challenges are comparing it to the libraries listed below
Sorting:
- Client-Side Prototype Pollution Tools☆85Updated 4 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Updated 2 years ago
- ☆73Updated 3 years ago
- ☆95Updated 4 years ago
- ☆75Updated last year
- ☆169Updated 4 years ago
- Detects request smuggling via HTTP/2 downgrades.☆94Updated 3 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated last year
- ☆76Updated 4 years ago
- ☆60Updated last year
- ☆84Updated last year
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Workshop given at Hack in Paris 2019☆124Updated 2 years ago
- ☆56Updated 9 months ago
- Extract relative urls from a heap snapshot☆87Updated 4 years ago
- ☆56Updated 4 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated 2 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 3 years ago
- Dependency Confusion Security Testing Tool☆51Updated 3 years ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆29Updated 5 years ago
- CVE PoCs☆21Updated 5 years ago
- ☆96Updated 4 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆112Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 4 months ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago
- ☆44Updated 3 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Updated 6 months ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆157Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago