umarfarook882 / Tornado_Demo_Vuln_App

Related projects ⓘ

Alternatives and complementary repositories for Tornado_Demo_Vuln_App

• immunIT / CVE-2018-11759
  Proof of concept showing how to exploit the CVE-2018-11759
  ☆41Updated 5 years ago
• neargle / Go-Get-RCE-CVE-2018-6574-POC
  CVE-2018-6574 POC : golang 'go get' remote command execution during source code build
  ☆24Updated 2 years ago
• riusksk / FlashScanner
  Flash XSS Scanner
  ☆51Updated 8 years ago
• mseclab / Burp-PyJFuzz
  Burp Suite plugin which implement PyJFuzz for fuzzing web application.
  ☆56Updated 7 years ago
• 1337g / CVE-2017-10271
  CVE-2017-10271 WEBLOGIC RCE (TESTED)
  ☆37Updated 6 years ago
• silentsignal / burp-collab-gw
  Simple socket-based gateway to the Burp Collaborator
  ☆33Updated 7 years ago
• brianwrf / myPadBuster
  It is a Python+Perl script to exploit ASP.net Padding Oracle vulnerability.
  ☆19Updated 8 years ago
• lprat / smuggling_detect
  Try to detect HTTP desync attack (https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn)
  ☆12Updated 5 years ago
• knqyf263 / CVE-2019-6467
  CVE-2019-6467 (BIND nxdomain-redirect)
  ☆26Updated 5 years ago
• debasishm89 / dotNetFuzz
  A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.
  ☆42Updated 6 years ago
• xinali / penework
  Penetration Test Framwork
  ☆22Updated 6 years ago
• SecarmaLabs / IoTChecklist
  Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.
  ☆30Updated 7 years ago
• pwntester / SpringBreaker
  Exploit PoC for Spring RCE issue (CVE-2011-2894)
  ☆41Updated 11 months ago
• riusksk / StrutScan
  Struts2 Vuls Scanner base perl script
  ☆21Updated 8 years ago
• zayedaljaberi / urlfuzzing
  Advance URL Fuzzing + Whois Domain running on python
  ☆17Updated 2 years ago
• alexvanmaele / ics-checklist
  Industrial Security Checklist
  ☆10Updated 8 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 8 years ago
• sisoc-tokyo / Real-timeDetectionAD_journal
  ☆25Updated 4 years ago
• Stahlz / JQShell
  A weaponized version of CVE-2018-9206
  ☆62Updated 6 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆54Updated 7 years ago
• dazhouzhou / ICS-Vulnerabilities
  Some ICS Vulnerabilities I've found will be listed here.
  ☆13Updated 8 years ago
• tnt1200 / passive-dns
  passive dns collector
  ☆10Updated 7 years ago
• vulnersCom / detect-rules
  Vulners signature-base software version detection rules
  ☆37Updated 3 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 5 years ago
• baidu-security / webshell-scanner-client
  A golang client of our webshell scanner API
  ☆28Updated 6 years ago
• agienka / blindy
  Simple script to automate brutforcing blind sql injection vulnerabilities
  ☆51Updated 7 years ago