1367 matches found
Exploit for Path Traversal in Solarwinds Serv-U
CVE-2024-28995 PoC and Bulk Scanner Overview This reposit...
Exploit for SQL Injection in Valvepress Automatic
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
By-passing Protection of PharStreamWrapper Interceptor
Insecure deserialization is a vulnerability which occurs when untrusted data is used to abuse the logic of an application. In July 2018, the vulnerability of insecure deserialization when executing Phar archives was addressed by removing the known attack vector in the TYPO3 core. For more details...
Exploit for CVE-2024-4956
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash_Form
Wordpress Hash Form – Drag & Drop Form Builder = 1.1.0 - Unau...
Exploit for Unrestricted Upload of File with Dangerous Type in Git
CVE-2024-32002: Exploiting Git RCE via git clone This repos...
Exploit for Insecure Default Initialization of Resource in Apache Superset
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
NTLM Relay Gat - Powerful Tool Designed To Automate The Exploitation Of NTLM Relays
NTLM Relay Gat is a powerful tool designed to automate the exploitation of NTLM relays using ntlmrelayx.py from the Impacket tool suite. By leveraging the capabilities of ntlmrelayx.py, NTLM Relay Gat streamlines the process of exploiting NTLM relay vulnerabilities, offering a range of...
C2-Cloud - The C2 Cloud Is A Robust Web-Based C2 Framework, Designed To Simplify The Life Of Penetration Testers
The C2 Cloud is a robust web-based C2 framework, designed to simplify the life of penetration testers. It allows easy access to compromised backdoors, just like accessing an EC2 instance in the AWS cloud. It can manage several simultaneous backdoor sessions with a user-friendly interface. C2 Clou...
Exploit for Cross-site Scripting in Sap Knowledge_Warehouse
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
Url-Status-Checker - Tool For Swiftly Checking The Status Of URLs
Status Checker is a Python script that checks the status of one or multiple URLs/domains and categorizes them based on their HTTP status codes. Version 1.0.0 Created BY BLACK-SCORP10 t.me/BLACK-SCORP10 Features Check the status of single or multiple URLs/domains. Asynchronous HTTP requests for...
Exploit for Cross-site Scripting in Cpanel
Badges !MIT Licensehttps://img.shields.io/badge/Licens...
Exploit for OS Command Injection in Issabel Pbx
Issabel PBX 4.0.0 Remote Code Execution Authenticated - CVE-...
ADOKit - Azure DevOps Services Attack Toolkit
Azure DevOps Services Attack Toolkit - ADOKit is a toolkit that can be used to attack Azure DevOps Services by taking advantage of the available REST API. The tool allows the user to specify an attack module, along with specifying valid credentials API key or stolen authentication cookie for the...
Exploit for SQL Injection in Wpdeveloper Notificationx
CVE-2024-1698 Exploit Script - Wordpress NotificationX = 2.8...
Exploit for Improper Handling of Insufficient Permissions or Privileges in Apple Macos
🇮🇱 BringThemHome NeverAgainIsNow 🇮🇱 We demand the...
Exploit for Improper Access Control in Adobe Coldfusion
Proof of Concept script for CVE-2024-20767 Overview get-...
OSGi v3.7.2 (and below) Console - RCE
!/usr/bin/python Exploit Title: OSGi v3.7.2 Console RCE Date: 2023-07-28 Exploit Author: Andrzej Olchawa, Milenko Starcik, VisionSpace Technologies GmbH Exploit Repository: https://github.com/visionspacetec/offsec-osgi-exploits.git Vendor Homepage: https://eclipse.dev/equinox Software Link:...
Airgorah - A WiFi Auditing Software That Can Perform Deauth Attacks And Passwords Cracking
Airgorah is a WiFi auditing software that can discover the clients connected to an access point, perform deauthentication attacks against specific clients or all the clients connected to it, capture WPA handshakes, and crack the password of the access point. It is written in Rust and uses GTK4 fo...
Exploit for OS Command Injection in Tp-Link Archer_Vr1600V_Firmware
Archer TP-Link VR1600V Router Local Remote Command Execution E...