HOUDINI

Input name: wordlist_src_dir

Input name: output_dir

Input name: subdomain_file

Input name: wordlist_file

Input name: input_dir

Input name: target_url

Input name: apk_file

Input name: command

Input name: config_file

Input name: target_domain

Input name: local_dir

Input name: container_dir

Input name: apk_to_decompile

Input name: wordlist_container_dir

Input name: search_term

Input name: target

Input name: JWT

Input name: target_port

Input name: target_ip_address

Input name: domain_src_dir

Input name: domain_container_dir

Input name: domain_list_file

Input name: interface

Input name: container_name

Input name: target_ip

Input name: args

Input name: YOUR_REPO

Input name: filename

Input name: payload

.. /XXEinjector

Quick Usage

For this tool the run command is:

docker run -it --rm -v <local_dir>:/xxeinjector secsi/xxeinjector --host=<target_ip> --path=/etc --file=<filename> --ssl

Description

XXEinjector automates retrieving files using direct and out of band methods. Directory listing only works in Java applications. Bruteforcing method needs to be used for other applications.

Official Documentation

Reference: https://github.com/enjoiz/XXEinjector

HOUDINI

Hundreds of Offensive and Useful Docker Images for Network Intrusion

.. /XXEinjector

Quick Usage

Categories

Description

Official Documentation