Alternatives and similar repositories for xss-to-rce

Users that are interested in xss-to-rce are comparing it to the libraries listed below

• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆62Updated 3 weeks ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆30Updated last year
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆125Updated 5 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 5 years ago
• 0xVIC / CheatSheets
  Cheat sheet
  ☆36Updated 5 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆69Updated 2 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• PortSwigger / serialization-examples
  ☆42Updated last year
• ZephrFish / F5-CVE-2022-1388-Exploit
  Exploit and Check Script for CVE 2022-1388
  ☆58Updated 4 months ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆79Updated 4 years ago
• p0dalirius / CVE-2021-43008-AdminerRead
  Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability
  ☆86Updated last year
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆70Updated 4 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆91Updated last year
• MayankPandey01 / Sparty-2.0
  An MS Sharepoint and Frontpage Auditing Tool
  ☆52Updated 9 months ago
• 0xAJ2K / CVE-2020-11022-CVE-2020-11023
  Little thing put together quickly to demonstrate this CVE
  ☆32Updated 2 years ago
• duckstroms / xss-reflector
  XSS reflector vulnerabilities exploitation extended.
  ☆27Updated 4 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆122Updated 3 years ago
• H0j3n / EzpzShell
  Collection Of Reverse Shell that can easily generate using Python3
  ☆60Updated last year
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆72Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆72Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆127Updated 4 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆61Updated last year
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• bot8080 / awesomeBugbounty
  ☆48Updated 4 years ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• w4fz5uck5 / OSWE
  OSWE Preparation
  ☆37Updated 6 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆29Updated 2 years ago