Pinned Repositories
active-scan-plus-plus
ActiveScan++ Burp Suite Plugin
jwt-editor
A Burp Suite extension and standalone application for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
OpenID-Connect-Java-Spring-Server
An OpenID Connect reference implementation in Java on the Spring platform.
rogue-jndi
A malicious LDAP server for JNDI injection attacks
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
yaml-payload
A tiny project for generating SnakeYAML deserialization payloads
actuator-testbed
A vulnerable application exposing Spring Boot Actuators
rogue-jndi
A malicious LDAP server for JNDI injection attacks
solr-injection
Apache Solr Injection Research
spring-view-manipulation
When MVC magic turns black
artsploit's Repositories
artsploit/yaml-payload
A tiny project for generating SnakeYAML deserialization payloads
artsploit/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
artsploit/rogue-jndi
A malicious LDAP server for JNDI injection attacks
artsploit/active-scan-plus-plus
ActiveScan++ Burp Suite Plugin
artsploit/jwt-editor
A Burp Suite extension and standalone application for creating and editing JSON Web Tokens. This tool supports signing and verification of JWS, encryption and decryption of JWE and automation of several well-known attacks against applications that consume JWT.
artsploit/OpenID-Connect-Java-Spring-Server
An OpenID Connect reference implementation in Java on the Spring platform.
artsploit/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.