Exploit for CVE-2020-14882

CVE-2020-14882ALL CVE-2020-14882ALL综合利用工具，支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。 需要模块：requests、http.client （工具仅用于授权的安全测试，请勿用于非法使用，违规行为与作者无关。） 命令回显模块已知成功版本：12.2.1.3.0、12.2.1.4.0、14.1.1.0.0 选项 功能一：命令回显 python3 CVE-2020-14882ALL.py -u http://1.1.1.1:7001 -c "net user" python3 CVE-2020-14882ALL.py -u...

Exploit for CVE-2013-0422

K8tools 2020628 声明: 工具仅供安全研究或授权渗透，非法用途后果自负。 下载: https://github.com/k8gege/K8tools 文档: http://k8gege.org PS: 不定期更新,文件比较大，可按需下载。工具有BUG或建议可直接Github上留言 提权工具均可在远控Cmd或WebShell运行，大部份经过修改编译兼容性稳定性更好 注意：不保证永久有效,喜欢自行保存。 综合工具 + 反弹工具 Ladon 6.6.6 反弹MSF/NC ShellTCP/HTTP/HTTPS + 扫描工具 Ladon 6.6 SMB漏洞检测 SMBGhost...

Pocsuite

It is an offensive tool for vulnerability exploitation. The primary CVE ID is not explicitly stated in the provided context, but the tool is likely used for exploiting vulnerabilities in web applications. The target product/service or framework is not explicitly stated, but it is likely a web...

Exploit for Improper Authentication in Microsoft

ecpslap This proof-of-concept for CVE-2020-0688https://vul...

exploiting

It is an offensive tool for Linux and Windows exploitation. The repository contains a PoC exploit for an unspecified vulnerability, likely related to the 3dsctf2016 challenge. The exploit targets a Linux system and appears to be a binary ELF file. The code snippet shows a getstarted script that i...

Exploit for Unrestricted Upload of File with Dangerous Type in Apache Activemq

This repository is an offensive tool for collecting or writing various vulnerability PoCs proofs of concept and exploits. The primary tool in this repository is a Python script named ActiveMQExP/ActiveMQExPV1.0.py, which is designed to exploit a vulnerability in Apache ActiveMQ, specifically...

Exploit for Missing Authentication for Critical Function in Vmware Vcenter_Server

It is an offensive tool for vulnerability scanning. The tool, na...

Exploit for CVE-2016-0728

This repository is an offensive tool for Linux kernel exploitation, specifically targeting the CVE-2016-0728 vulnerability. The vulnerability is a REFCOUNT overflow/Use-After-Free in keyrings, which allows for local root exploitation. The repository contains two exploit modules, expboost.c and...

shadowbroker

This repository, Zam-0703/shadowbroker, contains a collection of exploits and tools for various vulnerabilities. The repository was created by the Shadow Brokers, a group known for releasing stolen NSA hacking tools. The repository includes exploits for several vulnerabilities, including:...

Exploit for CVE-2013-0422

K8tools 20190727 声明: 工具仅供安全研究或授权渗透，非法用途后果自负。 博客: https://www.cnblogs.com/k8gege 下载: https://github.com/k8gege/K8tools PS: 不定期更新,文件比较大，可按需下载。工具有BUG或建议可直接Github上留言 提权工具均可在远控Cmd或WebShell运行，大部份经过修改编译兼容性稳定性更好 注意：不保证永久有效,喜欢自行保存。 综合工具 + 综合工具 K8飞刀Final.rar + K8data.mdb K8飞刀漏洞数据库20190402 + K8expList.txt...

Exploit for Injection in Oracle Agile_Plm

CNTA-2019-0014-CVE-2019-2725 Disclaimer: This tool...

Exploit for CVE-2017-0144

Based on the provided code and analysis, here is a summary of the findings: Classification: The repository is an offensive tool for exploiting vulnerabilities, specifically targeting the Windows operating system. Primary Target: The primary target is the Windows operating system, with a focus on...

NETSCRAPED EXPLOIT TOOL

NETSCRAPED EXPLOIT TOOL Author: @037 This tool allows you obtain all the credentials stored on Netwave IP cameras Prerequisites You need installed is Python 3.x apt-get install python3 You also require to have Shodan module installed pip install shodan You need cURL for this to work as well apt-g...

Sundown EK: vulnerability to use the tool in copying the masters-vulnerability warning-the black bar safety net

! Description Sundown is currently on the market the latest exploit tool, and the Sundown of the author also successfully proved himself is actually a plagiarism masters. Don't know this“borrow chickens lay eggs”thing was after exposure, and the user will buy his single? Recently, due to the Angl...

3.2 Million Servers Vulnerable to JBoss Attack

Cisco Talos said on Friday that 3.2 million servers are vulnerable to the JBoss flaw used as the initial point of compromise in the recent SamSam ransomware attacks. Worse, researchers said that thousands of servers have already been backdoored. Hardest hit have been K-12 schools running library...

Exploit for OS Command Injection in Gnu Bash

BadBash ======= CVE-2014-6271 ShellShock RCE PoC tool =====...

Exploit for Inadequate Encryption Strength in Openssl

Adam Langley's tool for testing for OpenSSL CVE-2014-0224, origi...

Cisco Multiple Products Automated Exploit Tool

No description provided by source. !/usr/bin/perl Written by hypoclear - http://hypoclear.cjb.net Thong-th-thong-th-thong.pl AKA thong.pl is a PERL script which automates several attacks against various Cisco products. To be specific: 12-13-00 - Cisco Catalyst ssh Protocol Mismatch DoS...

Palm OS 3.5.2 Weak Encryption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1715/info Palm OS is shipped with a security feature which enables a user to set password protection on various applications.The HotSync process allows a user to connect to a machine on the network through their Palm...

Computer Associates eTrust Intrusion Detection 1.4.1 .13 Weak Encryption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1341/info A weak encryption scheme exists in Computer Associates eTrust Intrusion Detection System formerly known as SessionWall-3 password which authorizes users to view and configure the application's registry settings...