usdAG / slipit
Utility for creating ZipSlip archives
☆66Updated last year
Related projects ⓘ
Alternatives and complementary repositories for slipit
- Gopher Tomcat Deployer☆47Updated 5 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆49Updated this week
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆51Updated 5 months ago
- tool that generates bypasses for open redirects☆48Updated 2 years ago
- ☆24Updated 5 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆24Updated 9 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆85Updated 7 months ago
- tetctf2020_amf_writeups☆23Updated 3 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆35Updated 3 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- an Evil Java RMI Registry.☆45Updated last year
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- ☆45Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆59Updated last year
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆22Updated 3 years ago
- ☆44Updated 2 years ago
- Exploitation code for CVE-2021-40539☆46Updated 3 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit☆69Updated last month
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆33Updated 7 months ago
- ☆29Updated last year
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆106Updated 4 years ago
- This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager☆48Updated last year
- Parse HPROF files from the Spring Boot Heapdump Actuator☆26Updated 4 months ago
- ☆32Updated 2 years ago
- A fingerprint generation helper for nuclei network templates☆71Updated last year