Skip to content
/ 230-OOB Public

An Out-of-Band XXE server for retrieving file contents over FTP.

172 stars 46 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lc/230-OOB

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

40 Commits
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
230.py
230.py
 
 
README.md
README.md
 
 
example_payload.xml
example_payload.xml
 
 
logo.png
logo.png
 
 
oob.dtd
oob.dtd
 
 

Repository files navigation


Out-of-Band XXE tool
A python script to achieve file read via FTP!
230OOB is a tool that emulates an FTP server, assisting you in achieving file read via Out-of-Band XXE.

Installation

git clone https://github.com/lc/230-OOB

Usage:

Generate an XXE payload & DTD at http://xxe.sh

Start the server:

python3 230.py 2121

everything will be logged to -> extracted.log

About

An Out-of-Band XXE server for retrieving file contents over FTP.

Resources

Readme
Activity

Stars

172 stars

Watchers

8 watching

Forks

46 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages