Xxe

Automate the exploitation of XXE vulnerabilities

A tool for embedding XXE/XML exploits into different filetypes

A tool to embed XXE and XSS payloads in various file formats

A tool to help exploit XXE vulnerabilities by sending a crafted XML file to the server and parsing it to extract the data.

A bash script for scanning a target network for HTTP resources through XXE

A mini webserver with FTP support for XXE payloads

A toolkit for detecting and tracking Blind XSS, XXE, and SSRF vulnerabilities

An intentionally vulnerable web application containing multiple web service security flaws designed for educational purposes and security testing practice.

A comprehensive reference guide covering various web application vulnerabilities, testing techniques, and resources for bug bounty hunters and security researchers.

A collection of scripts for debugging SSRF, blind XSS, and XXE vulnerabilities

A categorized collection of bug bounty write-ups that documents real-world vulnerability discoveries and exploitation techniques across various security flaw types.

A deliberately vulnerable web application written in under 100 lines of Python code for educational purposes and web security testing.

Web-application vulnerability scanner with extensive coverage of security testing modules.