oxml_xxe
XML exploiter
A tool for exploiting XXE vulnerabilities in various file formats
A tool for embedding XXE/XML exploits into different filetypes
1k stars
32 watching
230 forks
Language: Ruby
last commit: 2 months ago
Linked from 1 awesome list
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 luisfontes19/xxexploiter | An application used to exploit XXE vulnerabilities by generating XML payloads and serving them to test web applications. | 547 |
 enjoiz/xxeinjector | Automates exploitation of XXE vulnerability using various methods to retrieve files and data from vulnerable applications. | 1,556 |
 jbarone/xxelab | A proof-of-concept web application demonstrating an XML External Entity vulnerability | 225 |
 pyroxenites/boftools | A collection of tools and techniques for exploiting vulnerabilities in software applications. | 17 |
 weshatheleopard/rubyxl | A Ruby library for reading and modifying spreadsheet files in the Open XML format | 1,276 |
 rfunix/pompem | Automates searches for exploits and vulnerabilities across multiple databases | 988 |
 ohler55/ox | An XML parser and object marshaller designed to be fast and efficient | 905 |
 billy-ellis/exploit-challenges | A collection of vulnerable ARM binaries designed to help practitioners develop exploit development skills | 900 |
 overbryd/exoml | A module to convert between XML and an internal tree structure | 7 |
 xawdxawdx/sentryssrf | A tool to search for and exploit Sentry configuration vulnerabilities in web applications | 68 |
 brompwnie/botb | A tool designed to analyze and exploit vulnerabilities in containers for pentesters and engineers | 654 |
 ruricolist/fxml | A secure-by-default XML parser and serializer library | 32 |
 rsmudge/zerologon-bof | An implementation of a Zero Logon protocol Bounce Of Flood (ZoBoF) vulnerability exploitation technique | 157 |
 expelledboy/exml | An Elixir wrapper around an XML parsing and XPath evaluation library | 25 |
 sslab-gatech/pwn2own2020 | An exploitation project demonstrating how to chain vulnerabilities in Safari to escalate privilege on macOS | 404 |