Lucene search
K

47 matches found

Kitploit
Kitploit
added 2022/07/16 12:30 p.m.116 views

Kubeaudit - Tool To Audit Your Kubernetes Clusters Against Common Security Controls

kubeaudit is a command line tool and a Go package to audit Kubernetes clusters for various different security concerns, such as: run as non-root use a read-only root filesystem drop scary capabilities, don't add new ones don't run privileged and more! tldr.kubeaudit makes sure you deploy secure...

7.6AI score
Exploits0References31
Kitploit
Kitploit
added 2022/06/16 12:30 p.m.28 views

Admin-Panel_Finder - A Burp Suite Extension That Enumerates Infrastructure And Application Admin Interfaces (OTG-CONFIG-005)

A burp suite extension that enumerates infrastructure and application Admin Interfaces. OWASP References: Classification : Web Application Security Testing 02-Configuration and Deployment Management Testing OTG v4 : OWASP OTG-CONFIG-005 WSTG : WSTG-CONF-05 Why should I use this extension?...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2021/10/15 8:30 p.m.31 views

Crawlergo - A Powerful Browser Crawler For Web Vulnerability Scanners

crawlergo is a browser crawler that uses chrome headless mode for URL collection. It hooks key positions of the whole web page with DOM rendering stage, automatically fills and submits forms, with intelligent JS event triggering, and collects as many entries exposed by the website as possible. Th...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2021/09/27 11:30 a.m.29 views

Cloudquery - Transforms Your Cloud Infrastructure Into SQL Database For Easy Monitoring, Governance And Security

CloudQuery transforms your cloud infrastructure into queryable SQL for easy monitoring, governance and security. What is CloudQuery and why use it? CloudQuery pulls, normalize, expose and monitor your cloud infrastructure and SaaS apps as SQL database. This abstracts various scattered APIs enabli...

7.9AI score
Exploits0References7
Kitploit
Kitploit
added 2021/07/12 12:30 p.m.225 views

Sx - Fast, Modern, Easy-To-Use Network Scanner

sx is the command-line network scanner designed to follow the UNIX philosophy. The goal of this project is to create the fastest network scanner with clean and simple code. Features 30x times faster than nmap ARP scan : Scan your local networks to detect live devices ICMP scan : Use advanced ICMP...

7AI score
Exploits0References2
Kitploit
Kitploit
added 2020/10/31 11:30 a.m.31 views

Nethive-Project - Restructured And Collaborated SIEM And CVSS Infrastructure

The Nethive Project provides a Security Information and Event Management SIEM insfrastructure empowered by CVSS automatic measurements. Features Machine Learning powered SQL Injection Detection Server-side XSS Detection based on Chrome's XSS Auditor Post-exploitation Detection powered by Auditbea...

7.8AI score
Exploits0References3
Kitploit
Kitploit
added 2020/10/20 8:30 p.m.62 views

Zap-Hud - The OWASP ZAP Heads Up Display (HUD)

The HUD is new interface that provides the functionality of ZAP directly in the browser. Learn more: Blog: Hacking with a Heads Up Display Video: The OWASP ZAP HUD - Usable Security Tooling Wiki: Inside the HUD Using the HUD Downloading You can try out ZAP enabled with the HUD via any of: Downloa...

7AI score
Exploits0References3
Kitploit
Kitploit
added 2020/07/17 12:30 p.m.116 views

Tsunami - A General Purpose Network Security Scanner With An Extensible Plugin System For Detecting High Severity Vulnerabilities With High Confidence

Tsunami is a general-purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence. To learn more about Tsunami, visit our documentations. Tsunami relies heavily on its plugin system to provide basic scanning capabilities. All...

7.8AI score
Exploits0References5
Citrix
Citrix
added 2020/04/29 12:0 a.m.12 views

Quick Start Guide: ZTD via the LTE Interface (Citrix SD-WAN 110-LTE-SE)

This document depicts a Quick Start Guide for Citrix SD-WAN 110-LTE-SE appliances when performing ZTD Zero Touch Deployment via the LTE Interface...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2020/01/04 9:0 p.m.181 views

WindowsFirewallRuleset - Windows Firewall Ruleset Powershell Scripts

About WindowsFirewallRuleset Windows firewall rulles organized into individual powershell scripts according to: 1. Rule group 2. Traffic direction 3. IP version IPv4 / IPv6 4. Further sorted according to programs and services such as for example: 2. ICMP traffic 3. Browser rules 4. rules for...

7.5AI score
Exploits0References7
Kitploit
Kitploit
added 2019/02/22 12:39 p.m.214 views

BeEF - The Browser Exploitation Framework Project

What is BeEF? BeEF is short for The BrowserExploitation Framework. It is a penetration testing tool that focuses on the web browser. Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual securi...

7.4AI score
Exploits0References7
Qualys Blog
Qualys Blog
added 2019/01/22 8:6 p.m.313 views

Qualys Cloud Platform (VM, PC) 8.16 New Features

This new release of the Qualys Cloud Platform VM, PC, version 8.16, contains several new improvements in Qualys Vulnerability Management and Qualys Policy Compliance, which includes new password security option, increased limit for virtual hosts that can be added to a subscription, added support...

7.6AI score
Exploits0
Kitploit
Kitploit
added 2018/12/12 8:49 p.m.78 views

Jackhammer - One Security Vulnerability Assessment/Management Tool To Solve All The Security Team Problems

One Security vulnerability assessment/management tool to solve all the security team problems. What is Jackhammer? Jackhammer is a collaboration tool built with an aim of bridging the gap between Security team vs dev team, QA team and being a facilitator for TPM to understand and track the qualit...

7.5AI score
Exploits0References10
0day.today
0day.today
added 2018/08/28 12:0 a.m.62 views

Electron WebPreferences - Remote Code Execution Exploit

Exploit for multiple platform in category remote exploits CVE-2018-15685 - Electron WebPreferences Remote Code Execution This is a minimal Electron application with a POC for CVE-2018-15685. A remote code execution vulnerability has been discovered affecting apps with the ability to open nested...

8.2AI score0.10427EPSS
Exploits4
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.79 views

Action required for IBM MQ on AWS Quick Start for security vulnerabilities in Ubuntu.

Abstract Ubuntu is shipped as a component of IBM MQ in AWS Quick Start. Information about a security vulnerability affecting Ubuntu has been published in a security bulletin. Content Please consult Ubuntu's security bulletin Information Leak via speculative execution side channel attacks...

5.6CVSS2.6AI score0.93838EPSS
Exploits12Affected Software1
seebug.org
seebug.org
added 2018/05/10 12:0 a.m.74 views

SCADAS "BAS920 & ISC2000" Credentials Exposed(CVE-2017-17974)

Exploit; SCADAS "BAS920 & ISC2000"; Credentials Exposed BA System “Improper Access Control Authorization” Exploit Title: "SCADAS "BAS920 & ISC2000"; Credentials Exposed” CVE: CVE-2017-17974 Date: 29/12/2017 Exploit Author: Fernandez Ezequiel @capitanalfa && Bertin Jose @bertinjoseb Vendor: BA...

5CVSS9.8AI score0.0166EPSS
Exploits2
Kitploit
Kitploit
added 2017/09/23 9:53 p.m.24 views

TCPCopy - A TCP Stream Replay Tool

TCPCopy is a TCP stream replay tool to support real testing of Internet server applications. Description Although the real live flow is important for the test of Internet server applications, it is hard to simulate it as online environments are too complex. To support more realistic testing of...

7.7AI score
Exploits0References4
Kitploit
Kitploit
added 2017/07/28 3:7 p.m.15 views

Pythem - Penetration Testing Framework

pythem is a multi-purpose pentest framework written in Python. It has been developed to be used by security researchers and security professionals. The tool intended to be used only for acts within the law. I am not liable for any undue and unlawful act practiced by this tool, for more informatio...

7.5AI score
Exploits0References50
Kitploit
Kitploit
added 2017/05/27 3:23 p.m.22 views

QuickSand.io - Tool For Scanning Streams Within Office Documents Plus Xor DB Attack

QuickSand is a compact C framework to analyze suspected malware documents to 1 identify exploits in streams of different encodings, 2 locate and extract embedded executables. By having the ability to locate embedded obfuscated executables, QuickSand could detect documents that contain zero-day or...

7.3AI score
Exploits0References1
n0where
n0where
added 2016/12/19 5:28 a.m.35 views

Analyze Suspected Malware Documents: QuickSand

Analyze Suspected Malware Documents QuickSand is a compact C framework to analyze suspected malware documents to 1 identify exploits in streams of different encodings, 2 locate and extract embedded executables. By having the ability to locate embedded obfuscated executables, QuickSand could detec...

0.4AI score
Exploits0References1
Rows per page
Query Builder