Discover wdahlenburg/werkzeug-debug-console-bypass Open Source project

Stars
50
Rank 577,233 (Top 12 %)
Language
Python
Created about 3 years ago
Updated about 2 years ago

wdahlenburg

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege escalation vector.

interactsh-collaborator

Burpsuite plugin for Interact.sh

Java

192

VhostFinder

Identify virtual hosts by similarity comparison

112

CVESearch

Query various sources for CVE proof-of-concepts

spring-gateway-demo

Sample Spring application to Demonstrate the Gateway Actuator

Java

Hounds

Chromium based web crawler that identifies in-scope urls

JavaScript

LogicalFuzzingEngine

A Burpsuite extension written in Python to perform basic validation fuzzing

Python

canary

CLI tool written in Go to generate Canary Tokens from https://canarytokens.org

Chegg

A simple exploit on Chegg that was found and submitted on April 29, 2015

HTML

Traveling-Salesperson-Problem

Princeton Traveling Salesperson Problem solved with an O(N2) algorithm

Java

msf-rpc-client

Golang based RPC client to communicate with Metasploit. Based off Black Hat Go's example.

aws-native-rce

Collection of payloads to work with AWS services

raw_http_utils

Retrieve the raw HTTP request and response in Golang from net/http

Catching-Plagiarists

Java

Sourcerer

Ruby based utility to apply rules to url datasources and insert filtered results into a Sidekiq compatible Redis queue

Ruby

SlurpLogin

Generate Selenium IDE Test Cases via a Burpsuite Plugin

Python

HttpComparison

Compare raw HTTP responses to identify signficant differences

wdahlenburg/werkzeug-debug-console-bypass

wdahlenburg

Reviews

Repository Details

More Repositories