Utility for creating ZipSlip archives
☆84Feb 9, 2023Updated 3 years ago
Alternatives and similar repositories for slipit
Users that are interested in slipit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attac…☆29Jul 4, 2023Updated 2 years ago
- ☆24Oct 18, 2022Updated 3 years ago
- ServiceNow widge-simple-list misconfiguration scanner☆65Nov 16, 2023Updated 2 years ago
- tool that generates bypasses for open redirects☆51Apr 18, 2022Updated 3 years ago
- Smart DNS Brute Forcer☆22Jul 16, 2012Updated 13 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆43Jan 1, 2024Updated 2 years ago
- CVE-2022-21587 POC�☆15Feb 17, 2023Updated 3 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆59Jan 22, 2023Updated 3 years ago
- jws2pubkey tool☆44Jun 27, 2025Updated 8 months ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Aug 9, 2023Updated 2 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆15May 8, 2020Updated 5 years ago
- A tool to abuse Exchange services☆12Mar 18, 2024Updated 2 years ago
- a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.☆16May 28, 2022Updated 3 years ago
- Wordlists handcrafted (and automated) with ♥☆231Aug 1, 2025Updated 7 months ago
- Small tool to scan On-Premises Exchange servers, useful for analytical purposes and patch management☆20Aug 28, 2022Updated 3 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆56Nov 24, 2024Updated last year
- Quickly find all identities someone has used on their Github commits☆16Jul 28, 2024Updated last year
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- ☆93Aug 23, 2021Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆35Feb 9, 2024Updated 2 years ago
- CVE-2024-23897 jenkins-cli☆15Jan 27, 2024Updated 2 years ago
- ☆170Oct 4, 2021Updated 4 years ago
- BadExclusions is a tool to identify folder custom or undocumented exclusions on AV/EDR☆21Feb 8, 2024Updated 2 years ago
- Useful configurations for the DomLogger++ extension☆48Sep 7, 2024Updated last year
- Ffuf output browser☆39Feb 25, 2023Updated 3 years ago
- CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef☆257Mar 6, 2026Updated 2 weeks ago
- Go client for Elasticsearch OSINT platform☆15Nov 4, 2023Updated 2 years ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆228Feb 6, 2025Updated last year
- POC for RCE using vulnerabilities described in VMSA-2023-0001☆148Jan 31, 2023Updated 3 years ago
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆1,041Jun 3, 2021Updated 4 years ago
- A python3 script searching for secret on swaggerhub☆66Mar 22, 2022Updated 4 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Jan 20, 2025Updated last year
- Proofs-Of-360Security Sandbox Escape☆10Mar 18, 2022Updated 4 years ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆281Sep 11, 2025Updated 6 months ago
- ☆11Dec 22, 2020Updated 5 years ago
- IIS shortname scanner written in Go☆355Mar 25, 2023Updated 2 years ago
- Extract most frequent words in a list of subdomains☆13Feb 15, 2025Updated last year