yassineaboukir / CVE-2018-0296

Related projects ⓘ

Alternatives and complementary repositories for CVE-2018-0296

• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆122Updated 7 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆187Updated 2 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆59Updated 8 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆131Updated last year
• yassineaboukir / CVE-2020-5902
  Proof of concept for CVE-2020-5902
  ☆72Updated 4 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆139Updated 5 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆135Updated 3 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆280Updated 4 months ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆128Updated 4 years ago
• trustedsec / cors-poc
  ☆127Updated 6 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆169Updated last year
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆107Updated 5 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆124Updated 7 years ago
• nccgroup / argumentinjectionhammer
  A Burp Extension designed to identify argument injection vulnerabilities.
  ☆118Updated 5 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 10 months ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• 0ang3el / EasyCSRF
  ☆159Updated 6 years ago
• milo2012 / CVE-2018-13379
  CVE-2018-13379
  ☆250Updated 5 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆253Updated 3 years ago
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• j0bin / Pentest-Resources
  ☆120Updated 7 years ago
• 73696e65 / windows-exploits
  Used for the osce exam preparation
  ☆74Updated 8 years ago
• JannisKirschner / Horn3t
  Powerful Visual Subdomain Enumeration at the Click of a Mouse
  ☆137Updated 5 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆154Updated 2 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆172Updated 4 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆289Updated last year