Unsafe Deserialization

Scapy is vulnerable to unsafe deserialization. The vulnerability is due to insecure handling of serialized session files, which allows an attacker to execute arbitrary code by tricking a user into loading a malicious session file via the -s option...

EUVD-2025-35596

Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization...

Deserialization of Untrusted Data

Overview scapy is a Python-based interactive packet manipulation program and library. Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the loadsession process. An attacker can execute arbitrary code by convincing a user to load a malicious .pkl.gz session...

Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization

Summary An unsafe deserialization vulnerability in Scapy Internally, this triggers: python main.py SESSION = pickle.loadgzip.opensessionname, "rb" Since no validation or restriction is performed on the deserialized object, any code embedded via reduce will be executed immediately. This makes it...

GHSA-CQ46-M9X9-J8W2 Scapy Session Loading Vulnerable to Arbitrary Code Execution via Untrusted Pickle Deserialization

Summary An unsafe deserialization vulnerability in Scapy Internally, this triggers: python main.py SESSION = pickle.loadgzip.opensessionname, "rb" Since no validation or restriction is performed on the deserialized object, any code embedded via reduce will be executed immediately. This makes it...

3way (>=1.2.0 <=1.5.0.42), a-texam (=1.1.0) +430 more potentially affected by unknown CVE via scapy (>=2.2.0.dev0 <=2.7.0)

scapy PYPI version =2.2.0.dev0, =1.2.0, =0.1.0, =1.0.0, =1.0.0, =1.1.0, =0.1.13, =0.1.4, =0.1.0, =0.1.0, =0.2.0, =0.3.10 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-SCAPY-13669870...

albibong (>=1.0.0 <=1.1.10), am-viewer (>=1.1.0 <=4.0.1) +70 more potentially affected by unknown CVE via scapy (>=2.2.0.dev0 <=2.6.1)

scapy PYPI version =2.2.0.dev0, =1.0.0, =1.1.0, =1.0.3, =1.2.0, =1.2.0, =0.0.1, =1.2.5, =1.0.8, =0.0.4, =0.1.8, =0.2.5, =0.1.3, =1.2.1b0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-CQ46-M9X9-J8W2...

EUVD-2019-0128

Malware in sbrugna...

SemiAutoPenTestingTool

It is an offensive tool for network exploitation. This repositor...

Exploit for CVE-2023-1234

It is an offensive tool for Linux. This repository contains a pr...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

Ini adalah poc agak tidak stabil untuk CVE-2024-38063https:...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

IPv6 Vulnerability Packet Sender for Memory Corruption CVE-...

Windows TCP/IP - Remote Code Execution Checker and Denial of Service Exploit

Microsoft Windows IPv6 vulnerability checking proof of concept python script that causes a denial of service. Windows 10 and 11 versions under 10.0.26100.1457 and Server 2016-2019-2022 versions under 10.0.17763.6189 are affected. !/usr/bin/env python3 -- coding: utf-8 -- Exploit Title: Windows IP...

Windows TCP/IP - RCE Checker and Denial of Service

!/usr/bin/env python3 -- coding: utf-8 -- Exploit Title: Windows IPv6 CVE-2024-38063 Checker and Denial-Of-Service Date: 2024-08-07 Exploit Author: Photubias Vendor Homepage: https://microsoft.com Vendor Advisory: 1 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38063 Version:...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

CVE-2024-38063 Overview In August 2024, Microsoft release...

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

This is a rather flaky poc for CVE-2024-38063https://msrc.m...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Linux Linux_Kernel

🇮🇱 BringThemHome NeverAgainIsNow 🇮🇱 We demand the...

Exploit for CVE-2023-33105

CVE-2023-33105: Transient DOS in WLAN Host and Firmware Ov...

NetworkAssessment - With Wireshark Or TCPdump, You Can Determine Whether There Is Harmful Activity On Your Network Traffic That You Have Recorded On The Network You Monitor

The Network Compromise Assessment Tool is designed to analyze pcap files to detect potential suspicious network traffic. This tool focuses on spotting abnormal activities in the network traffic and searching for suspicious keywords. DNS Tunneling Detection : Identifies potential covert...

DoSinator - A Powerful Denial Of Service (DoS) Testing Tool

DoSinator is a versatile Denial of Service DoS testing tool developed in Python. It empowers security professionals and researchers to simulate various types of DoS attacks, allowing them to assess the resilience of networks, systems, and applications against potential cyber threats. Features...