Alternatives and similar repositories for xss-to-rce

Users that are interested in xss-to-rce are comparing it to the libraries listed below

• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆65Updated 5 months ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated last year
• 0xVIC / CheatSheets
  Cheat sheet
  ☆36Updated 6 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆77Updated 5 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆123Updated 4 years ago
• PortSwigger / serialization-examples
  ☆42Updated 2 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 5 years ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆74Updated 2 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆127Updated 4 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆133Updated 4 years ago
• emadshanab / VOIP-Pentesting-checklist-Cheatsheet-Tools
  ☆55Updated 4 years ago
• yavolo / Web-CTF-Cheatsheet
  Web CTF CheatSheet 🐈
  ☆34Updated 6 years ago
• bot8080 / awesomeBugbounty
  ☆49Updated 5 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆72Updated 2 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 11 months ago
• dalbonip / theGreatRecon
  ☆27Updated last year
• carlospolop / Gorks
  ☆67Updated 2 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆85Updated 5 years ago
• ZephrFish / F5-CVE-2022-1388-Exploit
  Exploit and Check Script for CVE 2022-1388
  ☆58Updated last month
• elamaran619 / hackerone_wordlist
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆57Updated 5 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• DigitalInterruption / cookie-monster
  A utility for automating the testing and re-signing of Express.js cookie secrets.
  ☆58Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆111Updated last year
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆125Updated 2 years ago
• carlospolop / Pastos
  ☆58Updated 3 years ago