synacktiv / laravel-crypto-killer
A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
☆47Updated 5 months ago
Alternatives and similar repositories for laravel-crypto-killer:
Users that are interested in laravel-crypto-killer are comparing it to the libraries listed below
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 11 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- Some tips for Bug Bounty using LibreOffice☆46Updated 2 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆21Updated last month
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆67Updated 2 months ago
- ☆13Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 6 months ago
- ☆38Updated 2 weeks ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 6 months ago
- ☆58Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 5 months ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- ☆40Updated 3 months ago
- ☆33Updated 3 weeks ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆131Updated 5 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆66Updated last month
- A better way of querying certificate transparency logs☆86Updated last month
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 4 months ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆87Updated 10 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 6 months ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆51Updated 4 months ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 8 months ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 3 months ago
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆60Updated 11 months ago
- GeoServer Remote Code Execution☆78Updated last month
- List of some AD tools I frequently use☆45Updated 3 months ago
- External recon toolkit☆48Updated 4 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆88Updated last year