xanhacks / OffensiveWebLinks
Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.
☆28Updated 3 months ago
Alternatives and similar repositories for OffensiveWeb
Users that are interested in OffensiveWeb are comparing it to the libraries listed below
Sorting:
- A python module to explore the object tree to extract paths to interesting objects in memory.☆101Updated 6 months ago
- Some tips for Bug Bounty using LibreOffice☆48Updated 5 months ago
- WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a…☆56Updated last month
- Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.☆46Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆132Updated 4 months ago
- Scripts and examples for "From Day Zero to Zero Day" by Eugene Lim.☆99Updated 3 weeks ago
- ☆37Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆33Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆136Updated 8 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆86Updated last month
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆66Updated 9 months ago
- APKx is a high-performance tool written in Go for scanning Android APK files to discover sensitive information like URIs, endpoints, and …☆60Updated 4 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- Awesome MXSS ??☆52Updated 10 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆166Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆71Updated last month
- A complete table of results of types comparison in multiple languages☆33Updated 2 years ago
- ☆13Updated 2 years ago
- A list of all Active Directory machines from HackTheBox☆62Updated last week
- Fast exfiltration of text using only CSS and Ligatures☆55Updated 3 months ago
- Official writeups for Business CTF 2024: The Vault Of Hope☆151Updated 8 months ago
- HTML Universal Identifier☆67Updated 7 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆48Updated last month
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆74Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆92Updated 2 weeks ago
- ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com☆21Updated 2 years ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆71Updated 4 months ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆153Updated 5 months ago
- By using its cutting edge technology (lolnope), you can now have a persistent multi reverse pty handler!☆90Updated 4 months ago