XXEinjector

File retrieval tool

Automates exploitation of XXE vulnerability using various methods to retrieve files and data from vulnerable applications.

Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

GitHub

2k stars
54 watching
313 forks
Language: Ruby
last commit: about 4 years ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
buffalowill/oxml_xxe A tool for exploiting XXE vulnerabilities in various file formats 1,038
jbarone/xxelab A proof-of-concept web application demonstrating an XML External Entity vulnerability 225
eddiezab/aggressor-scripts A collection of scripts and tools for testing and exploiting network and system vulnerabilities. 1
entropic-security/xgadget A tool for searching and exploiting vulnerabilities in binary code using Return-Oriented Programming and Jump-Oriented Programming techniques. 84
0xsauby/yasuo Scans for vulnerable 3rd-party web applications on a network 569
hakirisec/hakiri_toolbelt Automates vulnerability scanning of Ruby on Rails applications and their dependencies. 273
ricardojba/poi-slinger Automatically identifies serialization issues in PHP applications by forcing them to perform DNS lookups with serialized objects 42
envato/zxcvbn-ruby A password strength testing library inspired by Dropbox's JavaScript implementation 315
storyyeller/enjarify A tool that translates Dalvik bytecode to equivalent Java bytecode for analyzing Android applications. 924
enkessler/cql A Ruby gem that provides a domain-specific language for extracting data from Cucumber test suites. 26
rdlowrey/auryn An IoC dependency injector that recursively instantiates class dependencies 722
r0075h3ll/oralyzer A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. 753
hasecuritysolutions/vulnwhisperer An aggregator tool for vulnerability scan reports from various scanners 1,357
mikbry/anzip A simple async library to extract files from zip archives in Node.js 61
reider-roque/linpostexp Tools for analyzing and exploiting vulnerabilities in Linux systems 176