Skip to content

Releases: vladko312/SSTImap

v1.2 Release

06 Jan 22:54
@vladko312 vladko312
v1.2
576be8c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.2 Release Latest
Latest

Old payload renamed to Twig_v1
Alternate payload: legacy/Twig_filter

  • Request body type support:

form: URLencoded form data (default)
json: JSON data
text: Plain text data
fromhex: Binary data encoded as HEX

  • Blind detection now uses separate longer time for verification and exploitation

Detected blind injections are now verified to produce less false positives
Warning is printed if detected delays vary more than expected

  • Improved some payloads by removing unused closures
  • Added a way to specify expected target system shell
  • URLs without params are no longer treated as forms by default
  • Added clarity with text and colors
  • Fixed some bugs
Assets 2
Loading

v1.1 Release

16 Apr 22:40
@vladko312 vladko312
v1.1
5882e5a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1 Release
  • Crawler and form detection (by @fantesykikachu)
  • New template engine added: Cheetah
  • Automatic import for engine modules
  • Interactive module reloading capability
  • Full support for Python 3.11
  • Replaced telnetlib with a custom TCP client

Contributors

fantesykikachu
Assets 2
Loading

v1.0 Release

05 Jul 22:19
@vladko312 vladko312
v1.0
4971ffa
Compare
Choose a tag to compare
v1.0 Release

First release of SSTImap

Assets 2
Loading