all InfoSec news
SSTImap - Automatic SSTI Detection Tool With Interactive Interface
Jan. 28, 2023, 11:30 a.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
SSTImap is a penetration testing software that can check websites for Code Injection and Server-Side Template Injection vulnerabilities and exploit them, giving access to the operating system itself.
This tool was developed to be used as an interactive penetration testing tool for SSTI detection and exploitation, which allows more advanced exploitation.
Sandbox break-out techniques came from:
- James Kett's Server-Side Template Injection: RCE For The Modern Web App
- Other public researches [1] [2]
- Contributions to Tplmap [3] [4].
This tool …
automatic detection information security penetration testing tools pentesting tools pentest tool tool
More from www.kitploit.com / KitPloit - PenTest Tools!
HackerInfo - Infromations Web Application Security
1 day, 3 hours ago |
www.kitploit.com
C2-Tracker - Live Feed Of C2 Servers, Tools, And Botnets
1 day, 13 hours ago |
www.kitploit.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cloud Technical Solutions Engineer, Security
@ Google | Mexico City, CDMX, Mexico
Assoc Eng Equipment Engineering
@ GlobalFoundries | SGP - Woodlands
Staff Security Engineer, Cloud Infrastructure
@ Flexport | Bellevue, WA; San Francisco, CA
Software Engineer III, Google Cloud Security and Privacy
@ Google | Sunnyvale, CA, USA
Software Engineering Manager II, Infrastructure, Google Cloud Security and Privacy
@ Google | San Francisco, CA, USA; Sunnyvale, CA, USA