ssexxe / XXEBugFindView external linksLinks
A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
☆72Sep 4, 2014Updated 11 years ago
Alternatives and similar repositories for XXEBugFind
Users that are interested in XXEBugFind are comparing it to the libraries listed below
Sorting:
- Exploiting Python PIL Module Command Execution Vulnerability☆56Nov 29, 2021Updated 4 years ago
- [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …☆42Jan 2, 2019Updated 7 years ago
- Another plugin for CRLF vulnerability detection☆25Jan 25, 2017Updated 9 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Nov 29, 2018Updated 7 years ago
- Repository aimed to compile scripts and tools that can be used during penetration tests to assess the security of different flash related…☆10Jan 5, 2015Updated 11 years ago
- Distributed password cracker for operating over high latency networks of loosely coupled hosts.☆13Jul 30, 2013Updated 12 years ago
- Study about HQL injection exploitation.☆51May 15, 2016Updated 9 years ago
- based on search engine and get the valid infomation to test the vulnerability☆16Jun 16, 2016Updated 9 years ago
- XMPP Man-in-the-Middle, quick & dirty☆41Feb 24, 2014Updated 11 years ago
- OAuth plugin for Burp Suite Extender☆43Jun 27, 2018Updated 7 years ago
- Evil snippets of Underhanded Red Team tactics☆11Jul 5, 2017Updated 8 years ago
- Xss Vulnerability Demonstration framework.☆12Aug 22, 2013Updated 12 years ago
- ☆28Oct 16, 2017Updated 8 years ago
- Experimental Java agent to stomp on things.☆15Feb 10, 2019Updated 7 years ago
- REST/JSON interface to Burp Suite☆33Oct 12, 2020Updated 5 years ago
- ☆27Mar 6, 2021Updated 4 years ago
- ☆46May 15, 2016Updated 9 years ago
- Duncan - Blind SQL injector skeleton☆60Jan 11, 2022Updated 4 years ago
- Burp Suite extension for JAX-RS☆65Mar 17, 2017Updated 8 years ago
- S2-055的环境,基于rest-show-case改造☆37Dec 7, 2017Updated 8 years ago
- DoS PoC's for SAP products☆51Jan 23, 2018Updated 8 years ago
- Clickjacking Proof-of-Concept Exploit☆25Oct 1, 2020Updated 5 years ago
- A fuzzing script for MitmProxy☆24May 15, 2015Updated 10 years ago
- ☆72Nov 20, 2017Updated 8 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Apr 14, 2016Updated 9 years ago
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆44Dec 17, 2023Updated 2 years ago
- User, contributor and developer friendly vulnerability database☆128Dec 14, 2018Updated 7 years ago
- Exploit for Adobe Coldfusion BlazeDS Java Object Deserialization RCE☆11Feb 7, 2018Updated 8 years ago
- ActiveScan++ Burp Suite Plugin☆655Dec 16, 2025Updated last month
- Flash XSS Scanner☆54Jun 26, 2016Updated 9 years ago
- CVE-2017-13089☆55Nov 15, 2017Updated 8 years ago
- Web Application Firewall For Limited Exploitation☆17Nov 15, 2017Updated 8 years ago
- cve-2014-0130 rails directory traversal vuln☆19May 15, 2017Updated 8 years ago
- Improved decoder for Burp Suite☆138Aug 30, 2021Updated 4 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆158Jul 10, 2025Updated 7 months ago
- ☆82Apr 20, 2021Updated 4 years ago
- Vulnerable Linux socket game for educational purposes☆22Apr 22, 2017Updated 8 years ago
- Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).☆519Mar 11, 2022Updated 3 years ago
- Educational Exploitable Web Application☆24Feb 9, 2016Updated 10 years ago