whitel1st / docem

Related projects ⓘ

Alternatives and complementary repositories for docem

• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆608Updated 8 months ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆802Updated 2 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆397Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆278Updated 2 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆711Updated 3 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆481Updated 10 months ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆343Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• Bo0oM / WAF-bypass-Cheat-Sheet
  Another way to bypass WAF Cheat Sheet (draft)
  ☆415Updated 5 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆742Updated 7 months ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆348Updated 2 years ago
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆584Updated last year
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆552Updated 3 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆335Updated 2 months ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 10 months ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆274Updated 3 years ago
• zricethezav / h1domains
  HackerOne "in scope" domains
  ☆399Updated this week
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆308Updated last year
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆511Updated 2 years ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆176Updated 2 years ago
• anantshri / svn-extractor
  simple script to extract all web resources by means of .SVN folder exposed over network.
  ☆449Updated 9 months ago
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆550Updated 2 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆247Updated last week
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆218Updated last month
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆668Updated last year
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆542Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆583Updated 3 weeks ago