618 matches found
filtron - Filtering reverse HTTP proxy
Reverse HTTP proxy to filter requests by different rules. Can be used between production webserver and the application server to prevent abuse of the application backend. The original purpose of this program was to defend searx , but it can be used to guard any web application. Installation and...
ansvif - An Advanced Fuzzing Framework Designed To Find Vulnerabilities In C/C++ Code.
ansvif, written primarily in C++, is designed to find code bugs by throwing garbage input at programs to see how they react. This is great for finding bugs, because not every type of input is always handled, and buffers are not always checked, etc. It also comes in handy when writing and protecti...
cics-user-brute NSE Script
CICS User ID brute forcing script for the CESL login screen. Script Arguments cics-user-brute.commands Commands in a semi-colon separated list needed to access CICS. Defaults to CICS. brute.credfile, brute.delay, brute.emptypass, brute.firstonly, brute.guesses, brute.mode, brute.passonly,...
Detects Clickbait Headlines Using Deep Learning: Clickbait Detector
Detects Clickbait Headlines Using Deep Learning People continually fall for clickbait and as Wired in it’s article mentioned Whether you think clickbait is on the rise, obscurant and self-negating, not such a big deal, or the root of all evil, one thing is clear about it: It’s increasingly hard t...
CVE-2016-9085
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors...
OWASP Security Shepherd - Web And Mobile Application Security Training Platform
The OWASP Security Shepherd Project is a web and mobile application security training platform. Security Shepherd has been designed to foster and improve security awareness among a varied skill-set demographic. The aim of this project is to take AppSec novices or experienced engineers and sharpen...
Inout Celebrities 1.0 Script - Improper Access Restrictions
Inout Celebrities 1.0 Script - Improper Access Restrictions Vulnerability: Security Bypass Date: 13.01.2017 Vendor Homepage: http://www.inoutscripts.com/ Script Name: Inout Celebrities Script Script Version: v1.0 Script Buy Now: http://www.inoutscripts.com/demo/inout-celebrities/demo/ Author: İhs...
Inout SocialTiles 2.0 Script - Improper Access Restrictions
Vulnerability: Security Bypass Date: 13.01.2017 Vendor Homepage: http://www.inoutscripts.com/ Script Name: Inout SocialTiles Script Script Version: v2.0 Script Buy Now: http://www.inoutscripts.com/demo/inout-socialtiles/demo/ Author: İhsan Şencan Author Web: http://ihsan.net Mail :...
ldwarf.ipac.caltech.edu XSS vulnerability
Vulnerable URL: http://ldwarf.ipac.caltech.edu/jpgraph-2.2/src/Examples/show-example.php?target=dateaxisex4.phpKNOXSS Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...
[SECURITY] Fedora 24 Update: botan-1.10.14-3.fc24
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
PyJFuzz - Python JSON Fuzzer
PyJFuzz is a small, extensible and ready-to-use framework used to fuzz JSON inputs , such as mobile endpoint REST API, JSON implementation, Browsers, cli executable and much more. Version | 1.1.0 ---|--- Homepage | http://www.mseclab.com/ Github | https://github.com/mseclab/PyJFuzz Author | Danie...
Google Explorer - Google Mass Explorer
+Google Mass Explorer This is a automated robot for google search engine. Make a google search, and parse the results for a especific exploit you define. The options can be listed with --help parameter. Intro: This project is a main project that i will keep upgrading when new exploits are...
BinProxy - BinProxy is a proxy for arbitrary TCP connections
BinProxy is a proxy for arbitrary TCP connections. You can define custom message formats using the BinData gem. Installation Prerequisites Ruby 2.3 or later A C compiler, Ruby headers, etc., are needed to compile several dependencies. On Ubuntu, sudo apt install build-essential ruby-dev should do...
Raptor WAF v0.2 - Web Application Firewall using DFA
Raptor WAF is a simple web application firewall made in C, using KISS principle, to make poll use select function, is not better than epoll or kqueue from BSD but is portable, the core of match engine using DFA to detect XSS, SQLi and path traversal. No more words, look at the following : WAF...
Vulnerabilities of the Debian GNU/Linux operating system that allow a local malicious individual to compromise the accessibility of protected information
The multiple vulnerabilities in the gtk2.0-examples package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
phpMyAdmin Full Path Disclosure Vulnerability
phpmyadmin is an online management tool for MySQL databases. phpmyadmin versions 4.4.x, 4.6.x, 4.0.x are available at . /setup/, . /examples/ are vulnerable to a full path disclosure vulnerability, which can be exploited by an attacker with a constructed script that triggers a PHP error message t...
Multiple full path disclosure vulnerabilities
PMASA-2016-23 Announcement-ID: PMASA-2016-23 Date: 2016-06-23 Summary Multiple full path disclosure vulnerabilities Description This PMASA contains information on multiple full-path disclosure vulnerabilities reported in phpMyAdmin. By specially crafting requests in the following areas, it is...
Create TCP UDP Connections Over Audio Channel: Quiet-lwip
Quiet-lwip is a binding for libquiet to lwip . This binding can be used to create TCP and UDP connections over an audio channel. This channel may be speaker-to-mic “over the air” or through a wired connection. This binding provides an abstract version which emits and consumes floating point sampl...
[SECURITY] Fedora 23 Update: botan-1.10.13-1.fc23
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
Black Box WordPress Vulnerability Scanner: WPScan
WPScan is a Black Box WordPress Vulnerability Scanner that attempts to find known security weaknesses within WordPress installations. The application is provided for security professionals or WordPress administrators to help them find security problems and vulnerabilities in their installations. ...