XXExploiter - Tool to help exploit XXE vulnerabilities

(334 views)

XXExploiter generates the XML payloads, and automatically starts a server to serve the needed DTD's or to do data exfiltration. IMPORTANT: This tool is still under development and although most of its features are already working, some may have not been tested properly. Installation #install node and npm if you don't have it yet npm install -g xxexploiter Building and Running from source This is a simple Node application written with typescript. So you can build it as you build other apps: (install node and npm first, if you dont have them) npm install npm run build #you may need to npm install tsc -g in order for 'npm build' to succeed To run the app you can do it with one of two ways: npm start [args] node dist/index.js [args] Or you can install it on your system: npm link Usage Usage: xxexploiter.ts [command] [options] Commands: xxexploiter file [file_to_read]....

March 24, 2020
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
SpirtualMan
9 months ago

Why do you introduce a tool and just copy the Readme from the repo? How about some additional instructions on how to use the tool!

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.

What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.