This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
A mini webserver with FTP support for XXE payloads.
Script that automates the scanning of a target network for HTTP resources through XXE.
Embeds XXE/XML exploits into different filetypes.
Exploitation of XXE vulnerability using direct and different out of band methods.
Tool to help exploit XXE vulnerabilities.
Utility to embed XXE and XSS payloads in docx, odt, pptx...
List DTDs and generate XXE payloads using those local DTDs.
A collection of scripts mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
Toolkit to detect and keep track on Blind XSS, XXE & SSRF.