CVE-2011-2461

Awesome Burp Extensions A curated list of amazingly awesome Burp Extensions Contributing Please refer to the contributing guide for details How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Con

Content hijacking proof-of-concept using Flash, PDF and Silverlight

Cross-Site Content (Data) Hijacking (XSCH) PoC Project License Released under AGPL (see LICENSE for more information) Description This project can be used to provide a proof of concept for: Exploiting websites with insecure policy files (crossdomainxml or clientaccesspolicyxml) by reading their contents Exploiting insecure file upload functionalities which do not check the

A list of burp extensions, although this has fallen very out of date.

BurpExtensions Name Description BApp Store Category Review NET Beautifier Masks verbose parameter details in NET requests Y Beautifier Active Scan++ Extends Burp's active and passive scanning capabilities Y Scanner Additional Scanner Checks Provides some additional passive Scanner checks Y Scanner AES Payloads Allows encryption and decryption of AES pa

ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461

ParrotNG ParrotNG is a tool capable of identifying Adobe Flex applications (SWF) vulnerable to CVE-2011-2461 For more details, please refer to the slides of our Troopers 2015 talk Download the latest release from HERE ##Features Written in Java, based on swfdump One JAR, two flavors: command line utility and Burp Pro Passive Scanner plugin Detection of SWF files compiled w

List extensions from the [BurpSuite App Store](https://portswigger.net/bappstore) via [pub](https://github.com/ericchiang/pup) and [jq](https://github.com/stedolan/jq). The origin repo is https://github.com/awc/bappstore_list.

index extension rating score last updated store & github urls desciption 1 NET Beautifier 464 8265 2017-01-23 BAppStore/GitHub/Download Masks verbose parameter details in NET requests 2 Active Scan++ 469 100 2020-12-11 BAppStore/GitHub/Download Extends Burp's active and passive scanning capabilities 3 Add & Track Custom Issues 455 2858 2020

Personal collection of tutorial resources

Security-Research-Tutorials Personal collection of tutorial resources that can be helpful in my quest to security research and web application hacking Credit to BugCroud, most resources were from thier blog posts Please let me know if you have any suggestions for resources that i should add to this list ##Web applications: XSS Tutorial on cross-site scripting A comprehens

top-burpsuite-plugins-extensions How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Content Scanners Custom Features Beautifiers and Decoders Cloud Security Scripting OAuth and SSO Information Gat

Awesome Burp Extensions A curated list of amazingly awesome Burp Extensions Contributing Please refer to the contributing guide for details How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Con

A curated list of amazingly awesome Burp Extensions

Awesome Burp Extensions A curated list of amazingly awesome Burp Extensions Contributing Please refer to the contributing guide for details How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Con

Patched version of the uploader.swf and uploaderSingle.swf to fix CVE-2011-2461

magento-swf-patched-CVE-2011-2461 Patched version of the uploaderswf and uploaderSingleswf to fix CVE-2011-2461 More info about the vulnerable swf files in the Magento's core can be found here - packetstormsecuritycom/files/131376/Magento-eCommerce-Vulnerable-Adobe-Flex-SDKhtml The main reason CVE-2011-2461 is best explained by @Mindedsecurity blogmind

Awesome Burp Extensions A curated list of amazingly awesome Burp Extensions Contributing Please refer to the contributing guide for details How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Con

Awesome Burp Extensions A curated list of amazingly awesome Burp Extensions Contributing Please refer to the contributing guide for details How to Use Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins The best ways to use are: Simply press command + F to search for a keyword Go through our Content Menu Con

CVE-2011-2461_Magento_Patch By Edmonds Commerce This CVE relates to a CSRF vulnerability in the Adobe Flex swf files used by Magento You can find more information regarding the CVE here: Peter O'Callaghan - Magento CSRF vulnerability via Adobe Flex Minded Security - The old is new, again CVE-2011-2461 is back! Adobe - Flex Security Issue APSB11-25 The Files This repo