Updates XXEInjector - Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

Updates XXEInjector – Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

Latest change 19/1/2016:
+  XXEinjector.rb ; All Structure Files changes.

XXEinjector automates retrieving files using direct and out of band methods. Directory listing only works in Java applications. Bruteforcing method needs to be used for other applications.

xxeinjector

xxeinjector

Usage:

git clone https://github.com/enjoiz/XXEinjector && cd XXEinjector
ruby XXEinjector.rb

Updates:
cd XXEinjector
git pull

xxeinjector.rb script:

Source: https://github.com/enjoiz | Our post before