Alternatives and similar repositories for xss-to-rce

Users that are interested in xss-to-rce are comparing it to the libraries listed below

• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆30Updated last year
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 2 months ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• 0xVIC / CheatSheets
  Cheat sheet
  ☆36Updated 5 years ago
• bot8080 / awesomeBugbounty
  ☆48Updated 4 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 5 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆70Updated 2 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆73Updated 2 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆126Updated 6 years ago
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• duckstroms / xss-reflector
  XSS reflector vulnerabilities exploitation extended.
  ☆27Updated 4 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆78Updated 5 years ago
• H0j3n / EzpzShell
  Collection Of Reverse Shell that can easily generate using Python3
  ☆60Updated last year
• carlospolop / Pastos
  ☆56Updated 3 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆29Updated 2 years ago
• PortSwigger / serialization-examples
  ☆42Updated last year
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆126Updated 4 years ago
• dalbonip / theGreatRecon
  ☆28Updated last year
• AlecBlance / S3BucketList
  Chrome and Firefox extension that lists Amazon S3 Buckets while browsing
  ☆125Updated 2 months ago
• w4fz5uck5 / Pentest-notes
  Pentest stuff
  ☆49Updated last year
• gh0x0st / RCE_Web_Shell_Python
  A python approach to interacting with web shells.
  ☆30Updated 4 years ago
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆29Updated 4 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆45Updated last year
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 8 months ago
• emadshanab / VOIP-Pentesting-checklist-Cheatsheet-Tools
  ☆55Updated 4 years ago
• p0dalirius / CVE-2021-43008-AdminerRead
  Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability
  ☆86Updated last year
• EasyRecon / wappaGo
  ☆57Updated last year
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆49Updated 3 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago