The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, ZAP, Nuclei, SkipFish, and Wapiti.
-
Updated
Sep 8, 2025 - Python
The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, ZAP, Nuclei, SkipFish, and Wapiti.
OS Command Injection Vulnerability Payload List
Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.
An API for escaping different kind of queries
A collection of payloads for different vulnerabilities, best payload lists in one repository
This repository is a Dockerized php application containing a LFI (Local File Inclusion) vulnerability which can lead to RCE (Remote Code Execution).
Red Team utilities for setting up CWP CentOS 7 payload & reverse shell (Red Team 9 - CW2023)
Writeups for portswigger labs.
Executing shell commands via HTTP server
Exploit for CVE-2017-12945.
WAFManis is a Protocol-Level WAF Evasion Fuzzing Tool that automates the discovery of evasion vulnerabilities in Web Application Firewalls (WAFs) by fuzzing HTTP requests to identify potential bypass techniques.
CVE-2025-3969: Exploit PoC (OS CMD injection, Web Shell, Interactive Shell)
A threat actor may inject arbitrary operating system (OS) commands on target
SQL Injection and OS Command Injection demo application.
Executing shell commands via UDP server
An example of how custom commands are executed on a cloud server if an application is vulnerable to os command injection
Add a description, image, and links to the os-command-injection topic page so that developers can more easily learn about it.
To associate your repository with the os-command-injection topic, visit your repo's landing page and select "manage topics."