vp777 / surferFTP
SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
☆70Updated 3 years ago
Related projects: ⓘ
- The original slurp source☆32Updated 5 years ago
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 3 years ago
- Query various sources for CVE proof-of-concepts☆50Updated last year
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆43Updated 2 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 3 years ago
- CVE-2020-2021☆20Updated 3 years ago
- ☆54Updated 3 years ago
- ☆69Updated 2 years ago
- Argument Injection in Dragonfly Ruby Gem☆16Updated 3 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆50Updated 3 years ago
- TheCl0n3r will allow you to download and manage your git repositories.☆51Updated 3 years ago
- Kubernetes Scanner☆41Updated 2 years ago
- ☆92Updated 3 years ago
- ☆44Updated 2 years ago
- ☆47Updated 3 years ago
- a shared short domain for XSS and other hacks☆31Updated 2 years ago
- Gopher Tomcat Deployer☆47Updated 5 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 4 years ago
- ☆35Updated 4 years ago
- Manual JavaScript Linting is a Bug☆49Updated 3 years ago
- Generate image payloads in JS to bypass filters☆39Updated 3 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆72Updated 4 years ago
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆33Updated 4 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆87Updated this week
- nuclei scanner for proxyshell ( CVE-2021-34473 )☆42Updated last year
- Hacking Artifactory with server side template injection☆50Updated 4 years ago
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆74Updated 2 years ago