Lucene search
K

550 matches found

Kitploit
Kitploit
added 2021/05/01 12:30 p.m.185 views

Paragon - Red Team Engagement Platform With The Goal Of Unifying Offensive Tools Behind A Simple UI

Paragon is a Red Team engagement platform. It aims to unify offensive tools behind a simple UI, abstracting much of the backend work to enable operators to focus on writing implants and spend less time worrying about databases and css. The repository also provides some offensive tools already...

7AI score
Exploits0References6
Gitee
Gitee
added 2021/04/28 5:27 p.m.5 views

vulhub

This repository is an open-source collection of pre-built vulnerable docker environments, referred to as 'Vulhub'. It is an offensive tool for various areas, including web application security, penetration testing, and vulnerability research. The primary purpose of Vulhub is to provide a convenie...

8.6AI score
Exploits0
Gitee
Gitee
added 2021/04/27 11:16 a.m.4 views

vulhub

This repository is an open-source collection of pre-built vulnerable docker environments, known as Vulhub. It is an offensive tool for various areas, including web application security, penetration testing, and vulnerability research. The primary purpose of Vulhub is to provide a convenient and...

8.5AI score
Exploits0
Gitee
Gitee
added 2021/04/22 4:28 p.m.7 views

vulhub

This repository is an open-source collection of pre-built vulnerable docker environments, referred to as 'Vulhub'. It is an offensive tool for web application security testing and education. The primary vulnerability class/vector targeted by this collection is not explicitly stated, but it likely...

8.1AI score
Exploits0
Gitee
Gitee
added 2021/04/15 8:29 p.m.13 views

Exploit for SQL Injection in Zabbix

This is an open-source collection of pre-built vulnerable docker environments. It is an offensive tool for web application security testing. The primary CVE IDs present in the context are CVE-2016-10134, CVE-2017-2824, and CVE-2020-11800. The target product/service or framework is not explicitly...

9.8CVSS6.8AI score0.83284EPSS
Exploits28
Gitee
Gitee
added 2021/03/29 10:15 a.m.9 views

Exploit for Improper Encoding or Escaping of Output in F5 Nginx

It is an offensive tool for various areas. The repository contains a collection of vulnerable docker environments, including: CouchDB FFmpeg Git InfluxDB Jenkins Nginx Oracle Java Apache HTTP Server GitLab FastJSON Jenkins Electron The vulnerabilities include: CVE-2016-9086 GitLab CVE-2016-10134...

9.8CVSS7.5AI score0.99686EPSS
Exploits74
Hacker One
Hacker One
added 2021/03/19 2:59 p.m.360 views

Rocket.Chat: Pre-Auth Blind NoSQL Injection leading to Remote Code Execution

Summary: The getPasswordPolicy method is vulnerable to NoSQL injection attacks and does not require authentication/authorization. It can be used to take over accounts by leaking password reset tokens. Taking over an admin account leads to Remote Code Execution. Description: The getPasswordPolicy...

7.5CVSS0.2AI score0.95242EPSS
Exploits16
Gitee
Gitee
added 2021/03/12 9:38 a.m.2 views

vulhub

It is an offensive tool for vulnerable environments. The repository contains pre-built vulnerable environments based on Docker-Compose. The tool is designed to provide a simple way to create and manage vulnerable environments for testing and training purposes. The target product/service or...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2021/03/09 11:30 a.m.214 views

Writehat - A Pentest Reporting Tool Written In Python

WriteHat is a reporting tool which removes Microsoft Word and many hours of suffering from the reporting process. Markdown -- HTML -- PDF. Created by penetration testers, for penetration testers - but can be used to generate any kind of report. Written in Django Python 3. Features: Effortlessly...

7AI score
Exploits0References3
Kitploit
Kitploit
added 2021/02/24 11:30 a.m.41 views

BugBountyScanner - A Bash Script And Docker Image For Bug Bounty Reconnaissance

A Bash script and Docker image for Bug Bounty reconnaissance, intended for headless use. Low on resources, high on information output. Helpful? BugBountyScanner helped you net a bounty? Description Note: Using the script over a VPN is highly recommended. It's recommended to run BugBountyScanner...

6.8AI score
Exploits0References1
Gitee
Gitee
added 2021/02/23 3:46 p.m.2 views

Exploit for SQL Injection in Zabbix

This is an open-source collection of pre-built vulnerable docker environments. It is an offensive tool for web application security testing. The primary CVEs mentioned in the repository are CVE-2016-10134, CVE-2017-2824, and CVE-2020-11800. The target product/service or framework is not explicitl...

9.8CVSS7.1AI score0.83284EPSS
Exploits28
Gitee
Gitee
added 2021/02/22 3:7 p.m.3 views

vulhub

This repository is an open-source collection of pre-built vulnerable Docker environments, known as Vulhub. It is an offensive tool for testing and demonstrating vulnerabilities in various software and systems. The primary vulnerability class targeted by Vulhub is not explicitly stated, but it...

8.6AI score
Exploits0
Gitee
Gitee
added 2021/02/02 2:38 p.m.3 views

vulhub1

This repository is an open-source collection of pre-built vulnerable docker environments, known as Vulhub. It is a collection of vulnerable environments for testing and learning purposes, with no pre-existing knowledge of docker required. The repository contains a variety of vulnerable...

7.8AI score
Exploits0
Gitee
Gitee
added 2021/01/29 11:51 a.m.4 views

vulhub

This repository is an open-source collection of pre-built vulnerable docker environments, referred to as 'Vulhub'. It is an offensive tool for web application security testing and vulnerability research. The primary vulnerability targeted by this repository is not explicitly stated, but it contai...

8.1AI score
Exploits0
GithubExploit
GithubExploit
added 2021/01/22 5:12 a.m.165 views

Exploit for CVE-2021-3129

CVE-2021-3129 Laravel Debug RCE How to use Run docke...

9.8CVSS7AI score0.99943EPSS
Exploits36
Gitee
Gitee
added 2021/01/15 2:38 p.m.21 views

Exploit for Cross-site Scripting in Squid-Cache Squid

CVE-2018-19131 is a proof-of-concept exploit for a vulnerability in Squid, a caching and proxy server. The exploit is built using a Docker Compose application and is designed to demonstrate the vulnerability. The vulnerability is in the Squid version 3.5.27, which is the version used in the...

6.1CVSS7.1AI score0.03333EPSS
Exploits1
Gitee
Gitee
added 2021/01/11 3:35 p.m.2 views

vulhub

It is an offensive tool for web application security training. The primary vulnerability is not explicitly stated, but the repository contains a variety of vulnerable docker environments, including those for web applications, databases, and other services. The environments are designed to be...

7.8AI score
Exploits0
Gitee
Gitee
added 2020/12/28 3:50 p.m.5 views

vulhub_v2

It is an offensive tool for web application security training. The repository contains a collection of vulnerable Docker environments for web application security training. The tool is designed to be easy to use, requiring only two simple commands to set up a vulnerable environment. The tool is n...

7AI score
Exploits0
Gitee
Gitee
added 2020/12/18 5:12 p.m.4 views

vulhub

It is an offensive tool for Docker environments. The repository contains a collection of vulnerable Docker environments, which can be used for testing and training purposes. The environments are pre-built and can be easily deployed using Docker and Docker Compose. The repository includes a variet...

6.8AI score
Exploits0
Gitee
Gitee
added 2020/12/16 9:25 a.m.2 views

vulhub2

It is an offensive tool for web application security training. The primary vulnerability targeted by this tool is not explicitly stated, but based on the provided code and metadata, it appears to be a web application vulnerability. The tool is designed to test the security of web applications, an...

7.4AI score
Exploits0
Rows per page
Query Builder