348 Open source projects that are alternatives of or similar to NodeJS-Red-Team-Cheat-Sheet

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

🎯 Server Side Template Injection Payloads

Image Payload Creating/Injecting tools

BugBounty Tool

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

🎯 Command Injection Payload List

🎯 SQL Injection Payload List

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

It is a note about security on nodejs

A way to backdoor every process

Dependency Injection container (IoC) for TypeScript

A Silent (Hidden) Ethereum (ETH & ETC) Miner Builder

A framework designed to hook into and modify methods in unity games via dlls

Command Line Interface Library for Arduino

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Work-in-progress Rust application that converts C++ header-only libraries to single self-contained headers.

The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

A CLI to generate stuff easy! (components, services, etc...)

spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧

A stand-alone implementation of the Acme text editor's command language.

Quickly show all your terminal colors

Iframe generator with dynamic content injection like HTML, Javascript, CSS, etc. and two ways communication, parent <-> iframe.

Inject automatically your Activities & Fragments, just with a simple annotation

An All-In-One Pure Python PoC for CVE-2021-44228

Simple php command executor with param binding

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Distributed, workflow-driven integration environment

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Loki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.

🍴 Indispensable git commands for everyday use

A web application that contains several unit tests for the purpose of .NET security

ZipCode Cep do Brazil

Some exploits, which I’ve created during my OSCE preparation.

Some personal exploits/pocs

A simple Kotlin multi-platform abstraction around the javax.inject annotations.

This is an NodeJS Discord Bot that uses the rustplus.js to interact with Smart Devices in the PC game Rust.

A simple framework for sending test payloads for known web CVEs.

pwptemp

Message and command handler for discord.js bots and applications

The magic-free Caliburn.Light, a powerful framework designed for building applications across current XAML platforms.

Python bind shell single line code for both Unix and Windows, used to find and exploit RCE (ImageMagick, Ghostscript, ...)

Minimal dependency injection framework for Unity

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Save keystrokes and run Artisan commands your way

A GABStudios Java library to help with command line parsing.

A Wrapper of a command to watch any changes in filesystem

Lightweight dependency injector

Learning Process Injection and Hollowing techniques

exploit code for F5-Big-IP (CVE-2020-5902)

CVE-2019-16759 vbulletin 5.0.0 till 5.5.4 pre-auth rce

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

Python AV Evasion Tools

An extension to Mono.Cecil that provides helper methods for simple method injection.

XSS Payload without Anything.

Inject additional configurations during Helm upgrade

RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer

An Open Source Windows DLL Injector With All Known Techniques Available

A flexible command framework and dispatcher which removes lots of boilerplate code used in commands. While it is used generally on Bukkit it is platform agnostic

A command line tool and module for Google Street View Image API

DI can be simple. Forget about modules and components. Just use it!