orf/xcat orf/xcat

  • Stars
    star
    351
  • Rank 117,160 (Top 3 %)
  • Language
    Python
  • License
    MIT License
  • Created over 12 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
orf/xcat
github

orf

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

XPath injection tool

XCat

Python package Rawsec's CyberSecurity Inventory

XCat is a command line tool to exploit and investigate blind XPath injection vulnerabilities.

For a complete reference read the documentation here: https://xcat.readthedocs.io/en/latest/

It supports an large number of features:

  • Auto-selects injections (run xcat injections for a list)

  • Detects the version and capabilities of the xpath parser and selects the fastest method of retrieval

  • Built in out-of-bound HTTP server

    • Automates XXE attacks
    • Can use OOB HTTP requests to drastically speed up retrieval

  • Custom request headers and body

  • Built in REPL shell, supporting:

    • Reading arbitrary files
    • Reading environment variables
    • Listing directories
    • Uploading/downloading files (soon TM)

  • Optimized retrieval

    • Uses binary search over unicode codepoints if available
    • Fallbacks include searching for common characters previously retrieved first
    • Normalizes unicode to reduce the search space

Install

Run pip install xcat

Or using docker: docker run -it tomforbes/xcat --help

Or on fedora, dnf install xcat 😎

Requires Python 3.7. You can easily install this with pyenv: pyenv install 3.7.1

Example application

There is a complete demo application you can use to explore the features of XCat. See the README here: https://github.com/orf/xcat_app

More Repositories

1

gping

Ping, but with a graph
Rust
10,168
star
2

html-query

jq, but for HTML
HTML
600
star
3

simple

Simple is a clone of Obtvse written in Python running on Flask.
CSS
505
star
4

cyborg

Python web scraping framework
Python
313
star
5

django-debug-toolbar-template-timings

A django-debug-toolbar panel that displays template rendering times for your Django application
Python
294
star
6

git-workspace

Sync personal and work git repositories from multiple providers πŸš€
Rust
266
star
7

dirscan

A high performance tool for summarizing large directories or drives
Rust
139
star
8

inliner

Automagically inline python methods
Python
99
star
9

cargo-bloat-action

Track rust binary sizes across builds using Github Actions
TypeScript
94
star
10

wordinserter

Insert HTML or Markdown into a Word document
Python
82
star
11

bare-hugo-theme

A Hugo theme based on Bulma.io
HTML
69
star
12

datatables

SQLAlchemy->Datatables
Python
53
star
13

ptail

Stream and display a fixed number of lines from a processes output.
Rust
50
star
14

human_id

Human readable IDs, in Python
Python
42
star
15

MovieFinder

A basic movie recommendation site built using Python, Flask, SQLAlchemy and Backbone.js
JavaScript
31
star
16

ripgrep-structured

Ripgrep over structured data
Rust
23
star
17

websocket_stdout_example

Use websockets with twisteds ProcessProtocol
Python
22
star
18

crontabula

Parse crontab expressions with Python
Python
22
star
19

django-docker-box

See https://github.com/django/django-docker-box
Python
21
star
20

xcat_app

A XPath injection demonstration application
Java
20
star
21

spam

A tool to graph who has sent you the most emails
Python
18
star
22

django-choice-object

A choice object for Django
Python
17
star
23

HtmlToWord

Render HTML to a specific portion of a word document using Python and PyWin32
Python
16
star
24

dotfiles

My dotfiles.
Nushell
14
star
25

cel-rust-original

Rust
13
star
26

xpath-expressions

Treat XPath expressions as Python objects
Python
11
star
27

petal

🌺 Petal - Flask, for gRPC services.
Python
11
star
28

TinyLink

Small link-shortening service written in Django
JavaScript
10
star
29

CTF

Simple capture the flag web application
JavaScript
9
star
30

django-github-actions

Github actions PoC for Django
Python
7
star
31

uni_timetables

A quick timetabling application written in Python using Flask
JavaScript
6
star
32

aio-pipes

Asynchronous pipes in Python
Python
6
star
33

pinger

Archived: Now part of https://github.com/orf/gping
Rust
6
star
34

alfred-quip-workflow

Fulltext, local Quip document search
Python
6
star
35

deterministic-zip

Deterministic zipfiles, with Rust
Rust
5
star
36

cvsslib

A library implementing CVSS v2 and v3 scores
Python
5
star
37

hnewssimulator

Hacker news simulator using Markov chains. Very messy at the moment.
Python
5
star
38

django-performance-metrics

Python
5
star
39

alfred-pycharm

Quickly open Pycharm projects via Alfred
Python
4
star
40

s3-deletion-visualizer

Rust
4
star
41

watchman-client

Python
4
star
42

howslow_django

4
star
43

hncat

Grab all Hacker News stores + comments, quickly.
Rust
3
star
44

redis-parser

Rust
3
star
45

digest

Simple RSS digester
2
star
46

pypaper

A windows desktop background manager written in Python
Python
2
star
47

Gmail-dumper

Dump Gmail inboxes
Python
2
star
48

Facebook-link-stats

Half finished facebook application that would track links shared on facebook.
Python
2
star
49

blog-hugo

My blog!
CSS
2
star
50

cargo-bloat-backend

Python
2
star
51

logbot

Logbot tails local log files to an IRC channel.
Python
2
star
52

apple-music-importer

Import your Library.xml file into Apple Music
TypeScript
2
star
53

homebrew-brew

Personal homebrew things
Ruby
1
star
54

workaround

Python
1
star
55

FindMeChicken-mono

C#
1
star
56

vulnerable_website

A vulnerable website I made for a presentation
CSS
1
star
57

wow_economy

Word of Warcraft auction price average thing.
Python
1
star
58

proximity-db

euclidean distance calculations, fast.
Rust
1
star
59

circleci-inspector

Python
1
star
60

Wikipedia-XML-Processor

Wikipedia XML Processor
C#
1
star
61

presentations

Presentations I've given since 2019
Shell
1
star
62

ripgrep-stream

Rust
1
star