Web CTF CheatSheet 🐈
-
Updated
Feb 7, 2019 - Ruby
Web CTF CheatSheet 🐈
An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
A simple automation tool to detect LFI, RCE and SSTI vulnerability. Forked for PR and customization
[BEW 2.3: Web Security] Clone this repo to begin the SSTI exploit activity.
Small Vulnerable Web App
simple server site template injection scanner !
iTop < 2.7.6 - (Authenticated) Remote command execution
App with Server Side Template Injection (SSTI) vulnerability - possible RCE - in Flask. Free vulnerable app for ethical hacking / penetration testing training.
A script written in python3 to spread blind cross-site scripting payloads on HTTP requests headers
Simple ssti payload generator for java using concat technique
A simple automation tool to detect LFI, RCE and SSTI vulnerabilities.
Add a description, image, and links to the ssti topic page so that developers can more easily learn about it.
To associate your repository with the ssti topic, visit your repo's landing page and select "manage topics."