xapax / xss-to-rceLinks
Javascript payload that inject a malicious payload into the copy-buffer of the victim
☆35Updated 7 years ago
Alternatives and similar repositories for xss-to-rce
Users that are interested in xss-to-rce are comparing it to the libraries listed below
Sorting:
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- HTTP verb tampering & methods enumeration☆62Updated 3 weeks ago
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆30Updated last year
- Web CTF CheatSheet 🐈☆34Updated 6 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 5 years ago
- Cheat sheet☆36Updated 5 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆69Updated 2 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- ☆42Updated last year
- Exploit and Check Script for CVE 2022-1388☆58Updated 4 months ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability☆86Updated last year
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆91Updated last year
- An MS Sharepoint and Frontpage Auditing Tool☆52Updated 9 months ago
- Little thing put together quickly to demonstrate this CVE☆32Updated 2 years ago
- XSS reflector vulnerabilities exploitation extended.☆27Updated 4 years ago
- The scripts I write to help me on my bug bounty hunting☆122Updated 3 years ago
- Collection Of Reverse Shell that can easily generate using Python3☆60Updated last year
- A list of threat sinks used in the manual security source code review for application security☆72Updated 2 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Prototype Pollution Scanner☆127Updated 4 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆61Updated last year
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- ☆48Updated 4 years ago
- ☆26Updated 2 years ago
- OSWE Preparation☆37Updated 6 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆29Updated 2 years ago