xanhacks / OffensiveWebLinks
Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.
☆30Updated 7 months ago
Alternatives and similar repositories for OffensiveWeb
Users that are interested in OffensiveWeb are comparing it to the libraries listed below
Sorting:
- A python module to explore the object tree to extract paths to interesting objects in memory.☆102Updated 10 months ago
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆51Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- Some tips for Bug Bounty using LibreOffice☆55Updated 9 months ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆61Updated 5 months ago
- Challenges of the HeroCTF v4 edition.☆35Updated 2 years ago
- The most complete code auditing platform with thousands of real-world challenges☆133Updated 5 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆101Updated 8 months ago
- ☆92Updated last month
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆85Updated 10 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆66Updated last year
- Just A list Of Some Multilingual XSS Payloads and other weird ones i made☆123Updated 2 months ago
- ☆94Updated 4 months ago
- Official writeups for Business CTF 2024: The Vault Of Hope☆157Updated last year
- HTTP redirection service designed to help bypass SSRF filters. Integrated with Burp Suite.☆54Updated 5 months ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆156Updated 10 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆50Updated 5 months ago
- Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025☆102Updated 3 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆69Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆147Updated 8 months ago
- A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…☆28Updated last year
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆54Updated 2 years ago
- Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf☆19Updated last year
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆84Updated 8 months ago
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆152Updated 2 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆117Updated 5 months ago
- Unicode Security Toolkit☆40Updated last year
- Python code to Serialize and Unserialize java binary serialization format.☆30Updated 2 weeks ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆139Updated last year
- A collection of tools that I use in CTF's or for assessments☆103Updated 10 months ago