Movatterモバイル変換

Skip to content

#

ssti

Here are 51 public repositories matching this topic...

Language:All

Filter by language

All51 Python25 HTML5 Java3 Ruby3 Shell3 Go2 JavaScript2 C1 CSS1 PHP1

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

nemesida-waf /waf-bypass

Check your WAF before an attacker does

python waf xss python3 rce bypass lfi rfi nosql-injection sqli-injection ssti path-traversal graphql-injection waf-testing api-security-testing waf-bypass-tool

UpdatedJan 22, 2025
Python

SSTImap

vladko312 /SSTImap

Automatic SSTI detection tool with interactive interface

python penetration-testing rce pentesting pentest information-security pentest-tool ssti pentesting-tools penetration-testing-tools

UpdatedOct 14, 2024
Python

Marven11 /Fenjing

专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, designed for CTF

python security jinja2 scanner waf ctf ssti

UpdatedMar 21, 2025
Python

Adamkadaban /CTFs

CTF Cheat Sheet + Writeups / Files for some of the Cyber CTFs that I've done

cryptography cloud crypto reverse-engineering resources cheatsheet cybersecurity ctf-writeups steganography pwn pentesting ctf binary-exploitation ctf-tools reversing ctf-challenges hackthebox ssti tryhackme cryptohack

UpdatedMar 11, 2025
C

payloadbox /ssti-payloads

🎯 Server Side Template Injection Payloads

security security-audit web code injection source bounty bugbounty payload payloads websecurity source-code-analysis ssti server-side-template-injection code-security bugbountytips payloadbox

UpdatedJul 18, 2024

DiogoMRSilva /websitesVulnerableToSSTI

Simple websites vulnerable to Server Side Template Injections(SSTI)

UpdatedMar 16, 2023
PHP

Yt1g3r /CVE-2019-3396_EXP

CVE-2019-3396 confluence SSTI RCE

confluence exp ssti cve-2019-3396

UpdatedOct 1, 2020
Python

ronin-vulns

ronin-rb /ronin-vulns

Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.

ruby security xss sqli sql-injection web-security pentesting vulnerability-detection hacktoberfest vulnerability-scanners lfi rfi pentest-tool open-redirect ssti ronin-rb

UpdatedFeb 17, 2025
Ruby

TrixSec /waymap

Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying vulnerabilities by testing against various payloads.

python scanner hacking waf command-line-tool bypass sqlmap exploitation-framework xss-detection sql-scanner sqlinjection command-injection lfi-exploitation ssti open-redirect-detection sqli-scanner command-injection-scanner waymap trixsec website-hacking-tool

UpdatedFeb 12, 2025
Python

Err0r-ICA /SCANter

Websites Vulnerability Scanner

scanner xss rce sqli sql-injection xss-vulnerability xss-scanner xss-exploitation xss-detection sql-scanner xss-attacks ssti server-side-template-injection rce-exploit ssti-payloads rce-scanner

UpdatedOct 13, 2024
Python

darklotuskdb /SSTI-XSS-Finder

XSS Finder Via SSTI

tool bug hacking xss vulnerability bugbounty ssti dorks bugbountytips bugbounty-tool

UpdatedSep 14, 2023
Shell

MindPatch /hacking-lab

Small Vulnerable Web App

python flask xss bugbounty ssrf sqlinjection hackable uploadfile openredirect hacking-lab ssti cmdinjection

UpdatedMar 7, 2025
HTML

cokeBeer /go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

go cors security xss jsonp sqli ssrf xxe ssti

UpdatedMar 11, 2023
Go

CVE-2018-16341

mpgn /CVE-2018-16341

CVE-2018-16341 - Nuxeo Remote Code Execution without authentication using Server Side Template Injection

UpdatedJun 5, 2019
Python

ssti-flask-hacking-playground

filipkarc /ssti-flask-hacking-playground

App with Server Side Template Injection (SSTI) vulnerability - possible RCE - in Flask. Free vulnerable app for ethical hacking / penetration testing training.

python flask hacking owasp cybersecurity penetration-testing bug-bounty infosec pentesting bugbounty appsec owasp-top-10 oscp hackthebox hackinglabs hacking-lab ssti oswe template-injection ssti-payloads

UpdatedSep 15, 2022
Python

DEMON1A /Blinder

A script written in python3 to spread blind cross-site scripting payloads on HTTP requests headers

automation tool xss python3 bugbounty ssti blinder bugbounty-tool xsshunter

UpdatedOct 2, 2022
Python

muneebwanee /SubScanner

An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.

open-source automation tool parameters domain injection xss scans ssrf ssti sub-domain assetfinder gau gf-patterns subjack

UpdatedDec 11, 2020
Shell

geniuszly /GenCrushSSTIExploit

is a PoC for CVE-2024-4040 tool for exploiting the SSTI vulnerability in CrushFTP

security exploit cybersecurity penetration-testing vulnerability web-security cve ethical-hacking exploit-development crush ssti server-side-template-injection cve-2024-4040 gencrushsstiexploit crush-ssti

UpdatedSep 30, 2024
Python

RiteshPuvvada /riteshpuvvada.github.io

Vulnerability Walkthrough

log4j cybersecurity ssti sql-injection-exploitation bypassing-upload-filters cyber-security-awareness log4shell

UpdatedSep 19, 2023
HTML

Acceis /exploit-CVE-2022-24780

iTop < 2.7.6 - (Authenticated) Remote command execution

exploit rce cve ssti cve-2022-24780

UpdatedSep 2, 2022
Ruby

Improve this page

Add a description, image, and links to thessti topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with thessti topic, visit your repo's landing page and select "manage topics."

[8]ページ先頭

©2009-2025 Movatter.jp