Lucene search
K

5 matches found

GithubExploit
GithubExploit
added 2025/10/17 8:21 p.m.174 views

pocFlexiPwn

It is an offensive tool for web exploitation. The repository con...

8.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/08 12:0 a.m.33 views

Amazon Linux 2023 : python3-flask (ALAS2023-2023-183)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-183 advisory. Flask is a lightweight WSGI web application framework. When all of the following conditions are met, a response containing data intended for one client may be cached and subsequently sent by the proxy t...

7.5CVSS7.3AI score0.01261EPSS
Exploits1References4
The Hacker News
The Hacker News
added 2023/03/02 11:21 a.m.100 views

Experts Identify Fully-Featured Info Stealer and Trojan in Python Package on PyPI

A malicious Python package uploaded to the Python Package Index PyPI has been found to contain a fully-featured information stealer and remote access trojan. The package, named colourfool, was identified by Kroll's Cyber Threat Intelligence team, with the company calling the malware Colour-Blind...

Exploits0
Kitploit
Kitploit
added 2020/09/02 12:30 p.m.56 views

LOLBITS v2.0.0 - C2 Framework That Uses Background Intelligent Transfer Service (BITS) As Communication Protocol And Direct Syscalls + Dinvoke For EDR User-Mode Hooking Evasion

LOLBITS is a C2 framework that uses Microsoft's Background Intelligent Transfer Service BITS to establish the communication channel between the compromised host and the backend. The C2 backend is hidden behind an apparently harmless flask web application and it's only accesible when the HTTP...

7.8AI score
Exploits0References7
Kitploit
Kitploit
added 2020/01/16 11:30 a.m.82 views

LOLBITS - C# Reverse Shell Using Background Intelligent Transfer Service (BITS) As Communication Protocol

LOLBITS is a C reverse shell that uses Microsoft's Background Intelligent Transfer Service BITS to communicate with the Command and Control backend. The Command and Control backend is hidden behind an apparently harmless flask web application and it's only accesible when the HTTP requests receive...

8.2AI score
Exploits0References5
Rows per page
Query Builder