yuriisanin / svg2raster-cheatsheetLinks
A cheatsheet for exploiting server-side SVG rasterization.
☆30Updated 3 years ago
Alternatives and similar repositories for svg2raster-cheatsheet
Users that are interested in svg2raster-cheatsheet are comparing it to the libraries listed below
Sorting:
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- A list of threat sinks used in the manual security source code review for application security☆73Updated 2 years ago
- an Evil Java RMI Registry.☆52Updated 2 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- ☆169Updated 3 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- Security Advisories☆34Updated 2 months ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆37Updated 3 years ago
- ☆95Updated 4 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆30Updated 3 years ago
- ☆31Updated last year
- ☆27Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 3 months ago
- ☆48Updated 4 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Updated 8 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Stay within program scope☆37Updated 3 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆33Updated 6 months ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆28Updated 11 months ago
- NotSoCereal: A Deserialization exploit playground☆53Updated 3 years ago
- Recurrent Neural Network SubDomain Discovery Tool☆95Updated 3 years ago
- ☆72Updated 3 years ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 4 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆45Updated last year
- A command-line tool for Cross-Site WebSocket Hijacking☆45Updated last year
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 4 years ago
- Dependency Confusion Security Testing Tool☆50Updated 3 years ago
- ☆40Updated 3 months ago
- ☆56Updated 4 years ago