TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.


230-OOB is a python script that emulates an FTP server that assists you in achieving file read via Out-of-Band XXE. is a tool that generates an XXE payload and a DTD to achieve file read via XXE. It is meant to be used with 230-OOB