tombstoneghost / TIWAP
Totally Insecure Web Application Project (TIWAP)
☆172Updated last year
Alternatives and similar repositories for TIWAP:
Users that are interested in TIWAP are comparing it to the libraries listed below
- this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.☆116Updated 2 years ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆182Updated 4 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆263Updated 4 years ago
- a lightweight, flexible and novel open source poc verification framework☆235Updated 2 years ago
- Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.☆401Updated 2 years ago
- EPSS & VEDAS Score Aggregator for CVEs☆237Updated this week
- Small Tool written based on chaos from projectdiscovery.io☆171Updated 6 months ago
- Remote Code Injection In Log4j☆464Updated 3 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆271Updated 3 months ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆175Updated 2 weeks ago
- ☆121Updated 2 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆578Updated 4 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆161Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Proof of Concept (PoC) CVE-2021-4034☆97Updated 3 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆247Updated 5 months ago
- Chat automates Nuclei template generation☆107Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆371Updated last month
- Encoder to bypass WAF filters using XOR operations.☆253Updated 2 years ago
- pFuzz helps us to bypass web application firewall by using different methods at the same time.☆158Updated 4 years ago
- Here you can find mostly all disclosed h1 reports☆350Updated 3 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆133Updated 2 months ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆199Updated 10 months ago
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- Collection of penetration testing tools☆81Updated 4 years ago
- essential templates for kenzer [DEPRECATED]☆114Updated 2 years ago
- Spring4Shell - Spring Core RCE - CVE-2022-22965☆127Updated 3 years ago
- VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS☆221Updated 3 years ago
- BurpBounty 魔改版本☆415Updated 3 years ago
- red-tldr is a lightweight text search tool, which is used to help red team staff quickly find the commands and key points they want to ex…☆234Updated 2 years ago