There are 2 repositories under information-disclosure topic.
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
Extract uncompiled, uncompressed SPA code from Webpack source maps.
WEB SERVICE SECURITY ASSESSMENT TOOL
Joomla! < 4.2.8 - Unauthenticated information disclosure
Here you can get full exploit for SAP NetWeaver AS JAVA
Metasploit-like pentest framework derived from TIDoS (https://github.com/0xInfection/TIDoS-Framework)
A set of YARA rules for the AIL framework to detect leak or information disclosure
Sniper. Passive Secrets Hunting.🚬
A PoC exploit for CVE-2017-7921 - Hikvision Camera Series Improper Authentication Vulnerability.
CVE-2020-14179 Scanner
Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.
Writeups for portswigger labs.
AfterLogic Products Vulnerabilities
A PoC exploit for CVE-2021-43798 - Grafana Directory Traversal
Check Point Security Gateway (LFI)
Notes from Portswigger
Utility to scan wordpress installations using their on-by-default REST endpoints
solutions of hack-yourself-first
WordPress WPS Hide Login <1.9.1 - Information Disclosure
EventON (Free < 2.2.8, Premium < 4.5.5) - Information Disclosure
SOUND4 Impact/Pulse/First/Eco <=2.x - Information Disclosure