https://gitlab.com/TheTwitchy
TheTwitchy
A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.
A server vulnerable to XXE that can be used to test payloads using the xxer tool.