xxelab

XML exploit demo

A proof-of-concept web application demonstrating an XML External Entity vulnerability

A simple web app with a XXE vulnerability.

GitHub

225 stars
6 watching
63 forks
Language: HTML
last commit: about 3 years ago

Related projects:

Repository Description Stars
luisfontes19/xxexploiter An application used to exploit XXE vulnerabilities by generating XML payloads and serving them to test web applications. 544
buffalowill/oxml_xxe A tool for exploiting XXE vulnerabilities in various file formats 1,039
jxxcarlson/l1 A language demo project showcasing fault-tolerant parsing techniques for a simple language with a Lisp-like syntax. 0
jaiswalakshansh/vuldroid An Android application showcasing various security vulnerabilities to demonstrate potential attack vectors 63
vegabird/xvna An educational vulnerability-focused Node.js application 93
irsl/jackson-rce-via-spel A proof-of-concept project demonstrating exploitation of a vulnerability in Jackson-databind via Spring application contexts and expressions. 121
appknox/vulnerable-application A test application to demonstrate common security vulnerabilities in an Android app 19
enjoiz/xxeinjector Automates exploitation of XXE vulnerability using various methods to retrieve files and data from vulnerable applications. 1,544
rickogden/insecure-php-example A deliberately insecure PHP application showcasing common web security vulnerabilities. 7
urule99/jsunpack-n A tool designed to emulate browser behavior and detect vulnerabilities in web-based exploits 162
payloadbox/xxe-injection-payload-list Lists examples and types of XML external entity injection payloads and attacks 1,097
demi6od/smashing_the_browser An in-depth exploration of browser exploitation techniques and vulnerability discovery 446
kiwicom/xssable A vulnerable blogging platform demonstrating various XSS vulnerabilities to showcase security weaknesses and demonstrate exploitation techniques. 9
belane/linux-soft-exploit-suggester A script to identify vulnerabilities in software packages on Linux systems 222
jesalg/radd A Rails and AngularJS application demonstrating authentication and RESTful API architecture 124