53 matches found
security-research
Security Research This project hosts security advisories and...
security-research
Security Research This project hosts security advisories and...
EUVD-2024-54634
Malicious code in bioql PyPI...
KitHack
This is a collection of tools and scripts for the KitHack framework, a penetration testing tool. The repository includes a Python script, clean.sh, which is used to clean up the tools directory. The script checks if the user has root permissions and, if so, removes any tools that are not empty. T...
security-research
Security Research This project hosts security advisories and...
CVE-2024-53019
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources...
CVE-2024-53019 Buffer Over-read in Data Network Stack & Connectivity
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources...
Exploit for Out-of-bounds Write in Exim
CVE-2023-42115: Exploit and Payload Generator Scripts This r...
File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
file-unpumper is a powerful command-line utility designed to clean and analyze Portable Executable PE files. It provides a range of features to help developers and security professionals work with PE files more effectively. Features PE Header Fixing : file-unpumper can fix and align the PE header...
Exploit for Out-of-bounds Write in Exim
CVE-2023-42115: Exploit and Payload Generator Scripts This r...
Exploit for Improper Restriction of XML External Entity Reference in Adobe Commerce
Cosmic Sting: CVE-2024-34102 Exploiter Cosmic Sting is a Go-b...
CVE-2024-23897 - Jenkins <= 2.441 & <= LTS 2.426.2 PoC And Scanner
Exploitation and scanning tool specifically designed for Jenkins versions -p -f or python CVE-2024-23897.py -i -f Parameters: - -t or --target: Specify the target IPs. Supports single IP, IP range, comma-separated list, or CIDR block. - -i or --input-file: Path to input file containing hosts in...
RansomwareSim - A Simulated Ransomware
Overview RansomwareSim is a simulated ransomware application developed for educational and training purposes. It is designed to demonstrate how ransomware encrypts files on a system and communicates with a command-and-control server. This tool is strictly for educational use and should not be use...
C2-Search-Netlas - Search For C2 Servers Based On Netlas
C2 Search Netlas is a Java utility designed to detect Command and Control C2 servers using the Netlas API. It provides a straightforward and user-friendly CLI interface for searching C2 servers, leveraging the Netlas API to gather data and process it locally. Usage To utilize this terminal utilit...
Deepsecrets - Secrets Scanner That Understands Code
Yet another tool - why? Existing tools don't really "understand" code. Instead, they mostly parse texts. DeepSecrets expands classic regex-search approaches with semantic analysis, dangerous variable detection, and more efficient usage of entropy analysis. Code understanding supports 500+ languag...
KaliPackergeManager - Kali Packerge Manager
kalipm.sh is a powerful package management tool for Kali Linux that provides a user-friendly menu-based interface to simplify the installation of various packages and tools. It streamlines the process of managing software and enables users to effortlessly install packages from different categorie...
security-research
Security Research This project hosts security advisories and...
Exploit for Uncontrolled Resource Consumption in Ruoyi
CVE-2023-3163-SQL-Injection-Prevention A simple and quick way...
Exploit for Improper Encoding or Escaping of Output in Webmin
A Python script to exploit CVE-202...
Kubeaudit - Tool To Audit Your Kubernetes Clusters Against Common Security Controls
kubeaudit is a command line tool and a Go package to audit Kubernetes clusters for various different security concerns, such as: run as non-root use a read-only root filesystem drop scary capabilities, don't add new ones don't run privileged and more! tldr.kubeaudit makes sure you deploy secure...