Lucene search
K

24 matches found

GithubExploit
GithubExploit
added 2026/05/23 1:25 p.m.86 views

Exploit for Path Traversal in Fortinet Fortiproxy

CVE-2018-13379 — Mass Exploit for Fortine...

9.8CVSS7.5AI score0.99999EPSS
Exploits22
GithubExploit
GithubExploit
added 2026/03/10 3:14 p.m.204 views

Exploit for CVE-2026-27944

Nginx UI Discovery Scanner - CVE-2026-27944 Version Detector ht...

9.8CVSS5.9AI score0.22162EPSS
Exploits12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-13053

Malware in sbrugna...

9.8CVSS8AI score0.01383EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 4:10 p.m.19 views

CVE-2020-22275

Easy Registration Forms ER Forms Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. After that, when the system administrator generates CSV output from the forms information, there is no check on this inputs and the codes are executable...

8.8CVSS6.7AI score0.02144EPSS
Exploits1
Kitploit
Kitploit
added 2023/08/15 12:30 p.m.63 views

Trawler - PowerShell Script To Help Incident Responders Discover Adversary Persistence Mechanisms

Dredging Windows for Persistence What is it? Trawler is a PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts, primarily focused on persistence mechanisms including Scheduled Tasks, Services, Registry Modifications, Startup Items,...

7.5AI score
Exploits0References6
Kitploit
Kitploit
added 2023/08/10 12:30 p.m.30 views

Chaos - Origin IP Scanning Utility Developed With ChatGPT

chaos is an 'origin' IP scanner developed by RST in collaboration with ChatGPT. It is a niche utility with an intended audience of mostly penetration testers and bug hunters. An origin-IP is a term-of-art expression describing the final public IP destination for websites that are publicly served...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2023/05/05 12:30 p.m.38 views

Spartacus - DLL Hijacking Discovery Tool

Why "Spartacus"? If you have seen the film Spartacus from 1960, you will remember the scene where the Romans are asking for Spartacus to give himself up. The moment the real Spartacus stood up, a lot of others stood up as well and claimed to be him using the "I AM SPARTACUS" phrase. When a proces...

7.3AI score
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/11/21 12:0 a.m.6 views

PT-2022-23316 · WordPress · Contact Form 7 Database Addon

Name of the Vulnerable Software and Affected Versions: Contact Form 7 Database Addon WordPress plugin versions prior to 1.2.6.5 Description: The issue concerns the Contact Form 7 Database Addon WordPress plugin, which does not validate data when outputting it back in a CSV file. This could lead t...

9.8CVSS7.4AI score0.03617EPSS
Exploits2References6
Kitploit
Kitploit
added 2021/12/08 9:56 p.m.27 views

SMBeagle - Fileshare Auditing Tool That Hunts Out All Files It Can See In The Network And Reports If The File Can Be Read And/Or Written

SMBeagle is an SMB fileshare auditing tool that hunts out all files it can see in the network and reports if the file can be read and/or written. All these findings are streamed out to either a CSV file or an elasticsearch host, or both!? SMBeagle tries to make use of the win32 APIs for maximum...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2021/10/31 11:30 a.m.33 views

PeTeReport - An Open-Source Application Vulnerability Reporting Tool

PeTeReport Pe nTe st Report is an open-source application vulnerability reporting tool designed to assist pentesting/redteaming efforts, by simplifying the task of writting and generation of reports. Focused in product security, the tool help security researchers and pentesters to provide detaile...

7.2AI score
Exploits0References8
Kitploit
Kitploit
added 2020/07/29 12:30 p.m.44 views

Commit Stream - OSINT Tool For Finding Github Repositories By Extracting Commit Logs In Real Time From The Github Event API

commit-stream drinks commit logs from the Github event firehose exposing the author details name and email address associated with Github repositories in real time. OSINT / Recon uses for Redteamers / Bug bounty hunters: Uncover repositories which employees of a target company is commiting code...

7.3AI score
Exploits0References3
Kitploit
Kitploit
added 2019/08/20 9:30 p.m.149 views

PEpper - An Open Source Script To Perform Malware Static Analysis On Portable Executable

An open source tool to perform malware static analysis on P ortable E xecutable Installation eva@paradise:$ git clone https://github.com/Th3Hurrican3/PEpper/ eva@paradise:$ cd PEpper eva@paradise:$ pip3 install -r requirements.txt eva@paradise:$ python3 pepper.py ./malwaredir Screenshot...

7.3AI score
Exploits0References5
Kitploit
Kitploit
added 2019/07/06 1:0 p.m.342 views

Youzer - Fake User Generator For Active Directory Environments

Fake User Generator for Active Directory Environments Introduction The goal of Youzer is to create information rich Active Directory environments. This uses the python3 library 'faker' to generate random accounts. pip3 install faker You can either supply a wordlist or have the passwords generated...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2019/06/06 12:26 p.m.2221 views

H8Mail v2.0 - Email OSINT And Password Breach Hunting

Powerful and user-friendly password finder. Use h8mail to find passwords through different breach and reconnaissance services, or using local breaches such as Troy Hunt's "Collection1" or the infamous "Breach Compilation" torrent. Features Email pattern matching reg exp, useful for reading from...

7.3AI score
Exploits0References10
Kitploit
Kitploit
added 2019/03/12 8:43 p.m.139 views

Hostintel - A Modular Python Application To Collect Intelligence For Malicious Hosts

This tool is used to collect various intelligence sources for hosts. Hostintel is written in a modular fashion so new intelligence sources can be easily added. Hosts are identified by FQDN host name, Domain, or IP address. This tool only supports IPv4 at the moment. The output is in CSV format an...

7.1AI score
Exploits0References12
Kitploit
Kitploit
added 2019/02/02 8:45 p.m.250 views

Electronegativity - Tool To Identify Misconfigurations And Security Anti-Patterns In Electron Applications

Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron-based applications. It leverages AST and DOM parsing to look for security-relevant configurations, as described in the "Electron Security Checklist - A Guide for Developers and Auditors" whitepaper...

7.3AI score
Exploits0References5
Kitploit
Kitploit
added 2019/01/11 9:12 p.m.937 views

H8Mail - Email OSINT And Password Breach Hunting

Email OSINT and password finder. Use h8mail to find passwords through different breach and reconnaissance services, or the infamous "Breach Compilation" torrent. Features Email pattern matching reg exp, useful for all those raw HTML files Small and fast Alpine Dockerfile available CLI or Bulk...

7.4AI score
Exploits0References2
Kitploit
Kitploit
added 2018/10/20 12:25 p.m.317 views

Munin - Online Hash Checker For Virustotal And Other Services

Munin is a online hash checker utility that retrieves valuable information from various online sources The current version of Munin queries the following services: Virustotal Malshare HybridAnalysis Note: Munin is based on the script "VT-Checker", which has been maintained in the LOKI repository...

6.9AI score
Exploits0References1
OpenVAS
OpenVAS
added 2017/09/28 12:0 a.m.16 views

Microsoft Windows DNS Cache Output (Windows SMB Login)

This plugin creates a comma-separated CSV output of the target SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.2AI score
Exploits0
OSV
OSV
added 2017/06/16 9:29 p.m.22 views

CVE-2016-1000222

Logstash prior to version 2.1.2, the CSV output can be attacked via engineered input that will create malicious formulas in the CSV data...

7.5CVSS6.8AI score
Exploits0References1
Rows per page
Query Builder