Alternatives and similar repositories for Tornado_Demo_Vuln_App

Users that are interested in Tornado_Demo_Vuln_App are comparing it to the libraries listed below

• mseclab / Burp-PyJFuzz
  Burp Suite plugin which implement PyJFuzz for fuzzing web application.
  ☆56Updated 8 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆55Updated 9 years ago
• Stahlz / JQShell
  A weaponized version of CVE-2018-9206
  ☆62Updated 6 years ago
• securityroots / passdb
  Ruby interface to cirt.net default passwords database
  ☆19Updated 14 years ago
• Blizzo / tools
  Simple, useful scripts for red/blue team situations
  ☆22Updated 10 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆55Updated 8 years ago
• silentsignal / burp-collab-gw
  Simple socket-based gateway to the Burp Collaborator
  ☆34Updated 8 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• dazhouzhou / ICS-Vulnerabilities
  Some ICS Vulnerabilities I've found will be listed here.
  ☆13Updated 8 years ago
• armourbird / csf
  ArmourBird CSF - Container Security Framework
  ☆44Updated 3 years ago
• Z-0ne / SCADA-Rules
  Snort rules
  ☆35Updated 6 years ago
• jasonsheh / FingerScan
  ☆14Updated 7 years ago
• 1337g / CVE-2017-10271
  CVE-2017-10271 WEBLOGIC RCE (TESTED)
  ☆39Updated 7 years ago
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆11Updated 9 years ago
• zayedaljaberi / urlfuzzing
  Advance URL Fuzzing + Whois Domain running on python
  ☆18Updated 2 years ago
• vah13 / SAP_vulnerabilities
  DoS PoC's for SAP products
  ☆52Updated 7 years ago
• 0ang3el / HQLi-playground
  ☆46Updated 9 years ago
• dudeintheshell / blackhole
  ☆37Updated 10 years ago
• immunIT / CVE-2018-11759
  Proof of concept showing how to exploit the CVE-2018-11759
  ☆40Updated 6 years ago
• brianwrf / S2-053-CVE-2017-12611
  A simple script for exploit RCE for Struts 2 S2-053(CVE-2017-12611)
  ☆37Updated 8 years ago
• fate0 / pastebot
  一个监控 pastebin 的敏感内容，并发微博的 bot
  ☆15Updated 8 years ago
• agienka / blindy
  Simple script to automate brutforcing blind sql injection vulnerabilities
  ☆51Updated 8 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 9 years ago
• vulnersCom / detect-rules
  Vulners signature-base software version detection rules
  ☆37Updated 3 years ago
• mbechler / serjs
  A Java serializer in JavaScript
  ☆81Updated 7 years ago
• mylamour / Oops-Webshell
  Oops, It's funny to detect a webshell. Temporarily not maintained
  ☆18Updated 7 years ago
• milo2012 / CVE-2018-0296
  Test CVE-2018-0296 and extract usernames
  ☆106Updated 6 years ago
• debasishm89 / dotNetFuzz
  A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.
  ☆42Updated 6 years ago
• irsl / struts-any-results
  Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.
  ☆12Updated 6 years ago
• shengqi158 / S2-055-PoC
  S2-055的环境，基于rest-show-case改造
  ☆37Updated 7 years ago