GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → TheTwitchy → vulnd_xxe

TheTwitchy / vulnd_xxe

Licence: MIT license
A server vulnerable to XXE that can be used to test payloads using the xxer tool.

Programming Languages

java
68154 projects - #9 most used programming language

Labels

xmlvulnerable-web-app

Projects that are alternatives of or similar to vulnd xxe

template-injection-workshop
Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
Stars: ✭ 99 (+280.77%)
Mutual labels:  vulnerable-web-app
sqlinjection-training-app
A simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (+115.38%)
Mutual labels:  vulnerable-web-app
www-project-vulnerable-web-applications-directory
The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site
Stars: ✭ 10 (-61.54%)
Mutual labels:  vulnerable-web-app

vulnd_xxe

A server vulnerable to XXE that can be used to test payloads using the xxer tool, or any other tool for that matter. It's written in Java because all Java servers are vulnerable to XXE and I love pain (possibly a slight exaggeration on both points). In reality, I needed something on which to test xxer while I was writing it and figured something like this could be useful, both for me and others.

Target Audience

Penetration testers and developers who want to learn what XXE injection is, and the impact it can have. Also people who want to browse the Internet and thier own filesystem in the most convuluted and painful manner imaginable.

Screenshots

Dashboard

vulnd_xxe Dashboard

Example

vulnd_xxe Example

Running

Requirements

  • JDK 1.8+
  • Maven

Building

  • mvn compile

Running

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].