staaldraad / turner

Related projects ⓘ

Alternatives and complementary repositories for turner

• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 10 months ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆345Updated 2 years ago
• redtimmy / Richsploit
  Exploitation toolkit for RichFaces
  ☆102Updated last year
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆49Updated 6 years ago
• initstring / lxd_root
  Linux privilege escalation via LXD
  ☆132Updated 4 years ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆422Updated 2 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆253Updated 3 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆197Updated last year
• RedTeamPentesting / CVE-2020-13935
  Exploit for WebSocket Vulnerability in Apache Tomcat
  ☆165Updated 4 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆134Updated 2 years ago
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆106Updated 4 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆215Updated 4 years ago
• milo2012 / CVE-2018-13382
  CVE-2018-13382
  ☆145Updated 5 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆249Updated 3 weeks ago
• neex / 1u.ms
  ☆166Updated 3 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆337Updated 3 months ago
• vp777 / procrustes
  A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
  ☆209Updated 3 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆174Updated 4 years ago
• cpandya2909 / CVE-2020-15778
  ☆140Updated last year
• NetSPI / BurpExtractor
  A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
  ☆90Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• soffensive / windowsblindread
  A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system
  ☆199Updated last year
• CoreyD97 / Stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆194Updated 9 months ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆281Updated 8 months ago
• pimps / CVE-2018-7600
  Exploit for Drupal 7 <= 7.57 CVE-2018-7600
  ☆130Updated 6 years ago
• httpvoid / CVE-Reverse
  ☆278Updated 3 years ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆152Updated last year
• TheZ3ro / gogsownz
  Gogs CVEs
  ☆78Updated 4 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆280Updated 4 months ago