edusrc_POC

This repository contains a collection of Python scripts, each designed to exploit vulnerabilities in various web applications. The scripts are written in Chinese and appear to be intended for use on Chinese-language systems. The scripts are categorized into several groups, each targeting a specif...

PayloadsAllTheThings

It is an offensive tool for Web Application Security and Pentest/CTF. The repository contains a list of useful payloads and bypass techniques. The primary CVE ID is not explicitly mentioned, but it appears to be a collection of various exploits and tools. The target product/service or framework i...

glimmer_pocs

This is a proof-of-concept PoC repository for the tool "glimmer". The repository contains various PoCs for different types of vulnerabilities and information disclosure. The PoCs are implemented as Python scripts, each targeting a specific vulnerability or information disclosure. The PoCs are...

[SECURITY] Fedora 34 Update: python-PyMuPDF-1.18.8-2.fc34

This is PyMuPDF, a Python binding for MuPDF - a lightweight PDF and XPS viewer. MuPDF can access files in PDF, XPS, OpenXPS, epub, comic and ficti on book formats, and it is known for its top performance and high rendering quality. With PyMuPDF you therefore can also access files with extensions...

PayloadsAllTheThings

It is an offensive tool for general-purpose. This repository contains a collection of payloads for various purposes, including exploitation and testing. The payloads are not specifically tied to a particular CVE or GHSA ID. The target product/service or framework is not explicitly stated, but the...

h1-ctf: H1 Hackyholidays CTF - The Grinch was defeated

The following writeup will underline all the steps and tools used to solve the 12 challenges of the H1 Holidays CTF. The theme of the competition was the Grinch. How it is possible to read from the competition blog post https://www.hackerone.com/blog/12-days-hacky-holidays-ctf , the goal was to...

CVE-2019-19875

An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. Arbitrary commands could be injected using Python scripts via the AprolCluster script that is invoked via sudo and thus executes with root privileges, a different vulnerability than CVE-2019-16364...

CVE-2019-19875

CVE-2019-19875 affects B&R Industrial Automation APROL before R4.2 V7.08. The vulnerability arises from the AprolCluster script, which is invoked via sudo and executes with root privileges, allowing arbitrary commands to be injected and run. This is a different issue than CVE-2019-16364; multiple...

IBM Resilient Command Injection Vulnerability

IBM Resilient is a suite of incident response platforms from IBM in the United States. The platform supports functions such as incident response process orchestration and incident management. Resilient has a security vulnerability that can be exploited by an attacker to inject malicious commands...

vuls

The repository is a collection of exploits, proof-of-concepts, and other resources for various vulnerabilities. The primary language used in the repository is Chinese, but some code snippets and comments are in English. The repository appears to be a collection of tools and scripts for exploiting...

Pagodo - Automate Google Hacking Database Scraping And Searching

The goal of this project was to develop a passive Google dork script to collect potentially vulnerable web pages and applications on the Internet. There are 2 parts. The first is ghdbscraper.py that retrieves Google Dorks and the second portion is pagodo.py that leverages the information gathered...

webcgi-exploits

This repository is an offensive tool for Web CGI interfaces. It contains exploits for various web CGI interfaces, including PHP and Python. The primary focus is on FastCGI and Apache Modphp. The exploits are designed to take advantage of vulnerabilities in the web CGI interfaces, allowing for...

Exploit for Use After Free in Microsoft

This is an attempt to port existing PoCs Proof of Concept to actual exploits for the BlueKeep vulnerability CVE-2019-0708. The project is not actively maintained, but the author welcomes suggestions and opinions from the public. The goal is to achieve Remote Code Execution RCE on vulnerable hosts...

TAU Technical Report: New Attack Combines TinyPOS With Living-off-the-Land Techniques for Scraping Credit Card Data

In April of 2020 VMware Carbon Black Threat Analysis Unit TAU researchers worked with an Incident Response IR partner on a piece of malware that was discovered during an ongoing PCI investigation. The combined analysis showed that attackers who previously leveraged a malware family called TinyPOS...

Security Bulletin: Privilege escalation coverage gap in IBM SPSS Statistics (CVE-2015-7489)

Summary Harmful code may be executed because of privilege escalation coverage gap in IBM SPSS Statistics. Vulnerability Details CVEID: CVE-2015-7489 DESCRIPTION: IBM SPSS Statistics uses python scripts that have write permissions to Everyone. A local user can add malicious OS commands to the pyth...

LibMiner: Container-Based Cryptocurrency Miner Targeting Unprotected Redis Servers

Qualys is actively tracking threats which target containers. In our recent analysis, we have identified a few docker instances executing a malware which we term as “LibMiner”. This malware has the capability to deploy and execute Cryptominer. It uses a unique technique for lateral movement across...

Exploit for OS Command Injection in Dlink Dir-655_Firmware

This is a PoC exploit for CVE-2019-16920, a vulnerability in D-Link routers. The exploit is implemented in two Python scripts: CVE-2019-16920.py and CVE-2019-16920-MassPwn3r.py. The scripts send arbitrary input to a "PingTest" device common gateway interface, which can lead to command injection a...

UBUNTU-CVE-2019-9854

LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice...

SUSE-SU-2019:14163-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: mgr-cfg: - Ensure bytes type when using hashlib to avoid traceback bsc1138822 mgr-daemon: - Fix systemd timer configuration on SLE12 bsc1142038 mgr-osad: - Fix obsolete for old osad packages, to allow installing mgr-osad even by using osad at yum/zyppper...

BADministration - Tool Which Interfaces with Management or Administration Applications from an Offensive Standpoint

BADministration is a tool which interfaces with management or administration applications from an offensive standpoint. It attempts to provide offsec personnel a tool with the ability to identify and leverage these non-technical vulnerabilities. As always: use for good, promote security, and figh...