Alternatives and similar repositories for turner

Users that are interested in turner are comparing it to the libraries listed below

• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆332Updated last year
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆259Updated 3 years ago
• redtimmy / Richsploit
  Exploitation toolkit for RichFaces
  ☆103Updated last year
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆181Updated 4 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆267Updated 3 months ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆349Updated 2 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆151Updated last year
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆107Updated 4 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆287Updated 4 months ago
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• duc-nt / CVE-2020-6287-exploit
  PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Or…
  ☆96Updated 4 years ago
• vinothsparrow / iframe-broker
  Extension to log iframe and cross window communications.
  ☆54Updated 2 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆598Updated 4 years ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆432Updated 2 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆361Updated 9 months ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆253Updated last year
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆202Updated 2 years ago
• neex / 1u.ms
  ☆174Updated 3 years ago
• milo2012 / CVE-2018-13379
  CVE-2018-13379
  ☆252Updated 5 years ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆154Updated 2 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆289Updated 4 months ago
• bao7uo / dp_crypto
  Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)
  ☆169Updated 4 years ago
• httpvoid / CVE-Reverse
  ☆281Updated 3 years ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆220Updated 4 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• vp777 / procrustes
  A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
  ☆210Updated 4 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆281Updated 4 years ago