Skip to content

lc/230-OOB

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.gitattributes
 
 
.gitignore
 
 
230.py
 
 
README.md
 
 
example_payload.xml
 
 
logo.png
 
 
oob.dtd
 
 
Installation Usage:

README.md


Out-of-Band XXE tool
A python script to achieve file read via FTP!
230OOB is a tool that emulates an FTP server, assisting you in achieving file read via Out-of-Band XXE.

Installation

git clone https://github.com/lc/230-OOB

Usage:

Generate an XXE payload & DTD at http://xxe.sh

Start the server:

python3 230.py 2121

everything will be logged to -> extracted.log

About

An Out-of-Band XXE server for retrieving file contents over FTP.

Resources

Readme

Stars

165 stars

Watchers

7 watching

Forks

46 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages