synacktiv / laravel-crypto-killer
A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
☆38Updated 4 months ago
Alternatives and similar repositories for laravel-crypto-killer:
Users that are interested in laravel-crypto-killer are comparing it to the libraries listed below
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 9 months ago
- ☆13Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 4 months ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 2 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- Some tips for Bug Bounty using LibreOffice☆46Updated 3 weeks ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 9 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 4 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆53Updated last week
- A better way of querying certificate transparency logs☆84Updated 3 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆86Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 4 months ago
- Recon scripts for Red Team and Web blackbox auditing☆23Updated last month
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 3 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated last month
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆39Updated last year
- ☆25Updated this week
- Authentication Bypass in GoAnywhere MFT☆61Updated last year
- ☆74Updated 5 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆63Updated 2 weeks ago
- ☆25Updated 2 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- ☆38Updated last month
- ☆39Updated last month
- A Moodle Scanner☆39Updated 4 months ago
- Python code to Serialize and Unserialize java binary serialization format.☆19Updated last month
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 7 months ago
- Proof of Concept Exploit for CVE-2024-9464☆45Updated 5 months ago