stypr / vulnerable-nodejs-express-mysql
Example of a vulnerable NodeJS+Express+MySQL service
☆20Updated 2 years ago
Alternatives and similar repositories for vulnerable-nodejs-express-mysql:
Users that are interested in vulnerable-nodejs-express-mysql are comparing it to the libraries listed below
- HTTP request smuggling tools☆18Updated 4 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- ☆46Updated 3 years ago
- Prototype Pollution exploits collection☆32Updated 3 years ago
- Chrome extension to detect possible xsleaks☆12Updated 5 years ago
- A extension for collecting parameters☆25Updated 4 years ago
- unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment☆27Updated 4 years ago
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆42Updated last month
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆48Updated 4 months ago
- a tool that compiles a csv of all h1 program stats☆47Updated last year
- ☆33Updated 3 years ago
- Extract relative urls from a heap snapshot☆86Updated 3 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 3 years ago
- This repo contains solution for ctf challenges☆34Updated 4 months ago
- ☆15Updated 4 years ago
- Dependency Confusion Security Testing Tool☆47Updated 2 years ago
- ☆59Updated 8 months ago
- ☆15Updated 3 years ago
- Bug Bounty Tools☆34Updated 4 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SS…☆27Updated 4 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- Labs from our workshop "Demystifying the server-side".☆17Updated 2 years ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆42Updated 2 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- CVE PoCs☆21Updated 4 years ago
- Subdomain Takeover tool with web UI☆56Updated 2 years ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆30Updated 5 years ago