NextSSRF — CVE-2026-44578 Scanner & Exploit ║ ║ Next.js WebSocket Upgrade Handler SSRF
☆75May 15, 2026Updated 2 months ago
Alternatives and similar repositories for nextssrf
Users that are interested in nextssrf are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, …☆176May 12, 2026Updated 2 months ago
- Collection of documentation, tools, and tips related to vulnerability research.☆94Updated this week
- ☆84May 26, 2026Updated last month
- Nginx Rewrite CVE Scan(CVE-2026-42945 nginx-rift CVE-2026-9256)☆33May 27, 2026Updated last month
- A comprehensive WordPress vulnerability scanner and exploitation framework for authorized penetration testing. This tool automatically de…☆70May 21, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- CVE-2026-41940 — cPanel & WHM Authentication Bypass via Session-File CRLF Injection☆485May 1, 2026Updated 2 months ago
- My ATO Via Password Reset Methodology☆53May 13, 2026Updated 2 months ago
- ☆414Apr 29, 2026Updated 2 months ago
- Burp Suite extension + port-based highlighter: dedupes HTTP history into a live unique-request feed and color-codes attacker/victim traff…☆18Jul 7, 2026Updated last week
- ☆14Mar 6, 2025Updated last year
- An Automated Framework for End-to-End Blind XSS Detection and Reporting☆17Jan 23, 2026Updated 5 months ago
- burpsuite extension to analyze javascript files using semgrep☆13Feb 3, 2025Updated last year
- ☆21May 7, 2026Updated 2 months ago
- ☆24Updated this week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Mass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478☆36Dec 7, 2025Updated 7 months ago
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- Acunetix automate telegram bot☆12Jul 19, 2024Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆15Apr 2, 2026Updated 3 months ago
- Enhanced, Faster, Better version of the exploit☆25Dec 27, 2025Updated 6 months ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆51May 2, 2026Updated 2 months ago
- FortiSandbox RCE Scanner — CVE-2026-39808☆26Apr 21, 2026Updated 2 months ago
- Fortinet FortiClientEMS improper access control☆35Apr 20, 2026Updated 2 months ago
- **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…☆98Oct 24, 2025Updated 8 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Cross-Site Scripting (XSS) is a common vulnerability that allows attackers to inject malicious scripts into web pages viewed by users. In…☆11Sep 10, 2024Updated last year
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…☆32Oct 23, 2025Updated 8 months ago
- A shellcode loader generator with support for multiple injection techniques, built for red team engagements.☆93Jul 1, 2026Updated last week
- Argument injection vulnerability in PHP☆13Jun 15, 2024Updated 2 years ago
- BountyLens MCP server — connect Claude Code to your Hunter Tracker☆64Jun 22, 2026Updated 3 weeks ago
- The malicious IdP you were looking for. A weaponized Single Sign-On (SSO) Identity Provider (IdP) for security testing of OIDC and SAML 2…☆38Jun 6, 2026Updated last month
- ☆157Jan 22, 2026Updated 5 months ago
- A Powerful XSS,RXSS,BXSS finding tool☆33Oct 29, 2025Updated 8 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆20Apr 27, 2026Updated 2 months ago
- A tool for detecting subdomain takeover vulnerabilities by checking DNS records☆33May 28, 2026Updated last month
- LiteSpeed Cache Privilege Escalation PoC☆23Aug 25, 2024Updated last year
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …☆29Feb 15, 2026Updated 4 months ago
- React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)☆253Dec 12, 2025Updated 7 months ago
- Unofficial MCP server for accessing your HackerOne reports, programs, scope, and earnings from Claude Code☆40Apr 1, 2026Updated 3 months ago
- Get list of subsidiaries for a selected company☆32Dec 21, 2024Updated last year