yuriisanin / svg2raster-cheatsheet
A cheatsheet for exploiting server-side SVG rasterization.
☆29Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for svg2raster-cheatsheet
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago
- ☆56Updated last year
- A list of threat sinks used in the manual security source code review for application security☆70Updated last year
- ☆92Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆38Updated 10 months ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆26Updated 2 months ago
- ☆19Updated 2 months ago
- ☆158Updated 3 years ago
- Web cache poisoning vulnerability scanner.☆61Updated 2 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 2 years ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆22Updated 3 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- tool that generates bypasses for open redirects☆48Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- an Evil Java RMI Registry.☆45Updated last year
- ☆36Updated last year
- Utility for creating ZipSlip archives☆67Updated last year
- ☆23Updated last year
- Dependency Confusion Security Testing Tool☆39Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Enhanced 403 bypass header☆21Updated 2 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆26Updated 6 years ago
- Query various sources for CVE proof-of-concepts☆49Updated last year
- ☆52Updated 6 months ago
- Copy as XMLHttpRequest BurpSuite extension☆30Updated 3 years ago
- ☆33Updated 4 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Updated 2 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆39Updated 5 months ago