padding-oracle-attacker
Padding oracle attack tool
A tool to execute padding oracle attacks on encrypted data by exploiting vulnerabilities in encryption protocols.
🔓 CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
200 stars
7 watching
35 forks
Language: TypeScript
last commit: almost 2 years ago
Linked from 2 awesome lists
aescbccipher-block-chainingcryptocryptographydecryptionencryptionpadding-oraclepadding-oracle-attackpadding-oracle-attacks
sbilly/awesome-security
apsdehal/awesome-ctfRelated projects:
| Repository | Description | Stars |
|---|---|---|
 govtech-csg/paddingoraclehunter | An extension for Burp Suite to identify and exploit padding oracle vulnerabilities in cryptographic protocols. | 14 |
 mhaskar/blinder | Automates time-based blind SQL injection attacks using predefined queries to rapidly develop proof-of-concepts. | 49 |
 netspi/javaserialkiller | A Burp extension that enables Java Deserialization Attacks using a payload generator tool | 208 |
 airbnb/artificial-adversary | A tool to generate adversarial text examples and test machine learning models against them | 397 |
 anof-cyber/pycript | A tool for bypassing client-side encryption in web applications during penetration testing and bug bounty activities | 186 |
 trouble-1/vajra | A tool for simulating attacks on cloud environments such as Azure and AWS | 375 |
 nshalabi/attack-tools | Utilities for simulating adversary behavior in the context of threat intelligence and security analysis | 1,012 |
 weisong-ucr/mab-malware | An open-source reinforcement learning framework to generate adversarial examples for malware classification models. | 40 |
 hatlord/snmpwn | Tool for enumerating and attacking SNMPv3 users with brute-force and encryption methods | 245 |
 denizparlak/zeus | An AWS auditing and hardening tool that checks security settings and makes recommended changes based on CIS benchmarks | 708 |
 ikkisoft/bradamsa | A Burp Suite extension plugin to generate Intruder payloads using Radamsa, a fuzzer. | 87 |
 ajmwagar/lor-axe | A tool designed to conduct various types of denial-of-service attacks on web servers | 93 |
 padok-team/cognito-scanner | A tool for testing and exploiting weaknesses in AWS Cognito user authentication systems. | 100 |
 nalen98/angryghidra | An integration tool for Ghidra and Angr to facilitate binary analysis and symbolic execution in Java projects. | 562 |
 superhedgy/attacksurfacemapper | Automates reconnaissance to identify potential attack surfaces of a target network | 1,314 |