0xdbe / express-ssti Goto Github PK
View Code? Open in Web Editor NEWThis application is a demonstration prototype just to show how to perform SSTI (Server side templating injection) attack. This application use Express and Pug as templating engine. This tutorial is based on https://appsec.amanvir.io/exploring-template-injection