websec-skills

websec-skills Web Security Vulnerability Testing Skills Set,...

Exploit for Improper Input Validation in Paloaltonetworks Pan-Os

CVE-2024-3400 This program was improved upon to include a safe...

Hunting-Bugs

2026 Practical Bug Bounty Guide Built on real-world experie...

Luban-2040-v2

🛡️ Luban 2040 v2 Advanced Reconnaissance & Vulnerability...

Exploit for CVE-2020-1938

Tomcat Ghostcat CVE-2020-1938 / CNVD-2020-10487 Vulnerabilit...

Exploit for CVE-2026-31431

This script is entirely genera...

API Security Testing and Vulnerability Assessment

APIs now carry more sensitive data than traditional web interfaces. Payment details, health records, authentication tokens, and customer databases all flow through API endpoints that attackers can probe without ever touching a browser. A single misconfigured endpoint can expose millions of record...

📄 WordPress Kali Forms 2.4.9 Remote Code Execution

WordPress Kali Forms plugin version 2.4.9 suffers from a remote code execution vulnerability. ================================================================================================================================== | Title : WordPress Kali Forms 2.4.9 Remote Code Execution Assessment | ...

CloudStorageHunter-Pro

🔥 CloudStorageHunter-Pro 🚀 Ultimate Cloud Storage Security...

Bluetooth-app

Bluetooth Security Testing App A Kivy-based Android applicati...

FortiClient EMS 7.4.6 Vulnerability Assessment Tool

CVE-2026-35616 is a pre-authentication API bypass in FortiClient EMS 7.4.5 and 7.4.6 that allows remote, unauthenticated attackers to bypass certificate-based authentication through HTTP header spoofing. The Django application trusts user-controllable HTTP headers X-SSL-CLIENT-VERIFY,...

wp-hijack

Advanced WordPress Vulnerability Scanner & AI-Powered Exploi...

Exploit for CVE-2026-3891

⚠️ CVE-2026-3891 - Test Pix for WooCommerce Security !Downl...

WAV Fuzzer 1.0

This script is a fuzzer tool for WAV file processing programs that targets memory corruption vulnerabilities...

📄 OpenBabel 3.1.1 Parsing Issues

This Metasploit auxiliary module generates specially crafted proof of concept files targeting potential parsing vulnerabilities in OpenBabel version 3.1.1 such as NULL pointer dereference and out-of-bounds read conditions...

Mass FortiGate Symlink Bypass Scanner

FortiGate mass symlink bypass scanner that adds structured validation, impact assessment, and reporting logic. It first verifies whether the target actually appears to be a FortiGate device from Fortinet using fingerprinting heuristics, which reduces false positives. Instead of testing a single...

Exploit for Code Injection in Ivanti Endpoint_Manager_Mobile

Ivanti EPMM pre-auth RCE Dummy Target A simple demo applicati...

Exploit for CVE-2017-0143

Cybersecurity Penetration Testing Project Project Overview...

PT-2026-4912

Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo. Remote unauthenticated attacker is able to use this endpoint to e.g: retrieve cleartext password to the access point. The vendor was notified early about this vulnerability, but didn't respond with...

webguard-scanner

webguard-scanner COMPANY: CODETECH IT SOLUTIONS NAME: KA...