skiptomyliu / solutions-bwapp
In progress rough solutions to bWAPP / bee-box
☆170Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for solutions-bwapp
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...☆226Updated 4 years ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers☆273Updated 6 years ago
- Happy Hunting☆137Updated 5 years ago
- Lab for exploring SSRF vulnerabilities☆245Updated 3 years ago
- SHELLING - a comprehensive OS command injection payload generator☆107Updated 5 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆289Updated last year
- XXE Out of Band Server.☆169Updated last year
- ☆133Updated 2 years ago
- a tiny tool for swf hacking, just browse it:)☆238Updated 11 years ago
- Web Fuzzing Discovery and Attack Pattern Database☆113Updated 6 years ago
- Lesser Known Web Attack Lab☆330Updated 4 years ago
- Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.☆432Updated 3 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆138Updated 5 years ago
- small set of scripts to practice exploit XSS and CSRF vulnerabilities☆58Updated 6 years ago
- SHELLING - a comprehensive OS command injection payload generator☆438Updated 4 years ago
- Content hijacking proof-of-concept using Flash, PDF and Silverlight☆381Updated 5 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆423Updated 4 years ago
- ☆259Updated 5 years ago
- ☆227Updated 9 years ago
- The unofficial HackerOne disclosure Timeline☆135Updated 5 years ago
- Java deserialization exploitation lab.☆237Updated 5 years ago
- HTTP file upload scanner for Burp Proxy☆482Updated 10 months ago
- Facebook Bug Bounties☆101Updated 3 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆514Updated 4 years ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆201Updated 9 months ago
- PoC for CVE-2018-15133 (Laravel unserialize vulnerability)☆248Updated 8 months ago
- Pentest/BugBounty progress control with scanning modules☆282Updated 4 years ago
- Search an exploit in the local exploitdb database by its CVE☆168Updated 2 years ago
- YSOSERIAL Integration with burp suite☆162Updated last year