CVE-2021-26084 Remote Code Execution on Confluence Servers.
Fofa:
app="ATLASSIAN-Confluence"
Show help information.
python PoC.py
Vulnerability verification for individual websites.
python PoC.py -u https://1.1.1.1
Command execution.
python PoC.py -u https://1.1.1.1 -e 'cat /etc/passwd'
Batch testing.
python PoC.py -f urls.txt
DataExtractor A simple Burp Suite extension to extract datas from source code. Features in scope parsing file extensions to ignore files exclusion bas
log4shell_scanner Scans all drives for log4j jar files and gets their version from the manifest. Windows and Windows Server only.
HELLogger simple python keylogger DISCLAIMERS: DON'T DO BAD THINGS. THIS PROGRAM IS MEANT FOR PERSONAL USES ONLY. USE IT ONLY IN COMPUTERS WHERE YOU H
PowerDNS-based proof-of-concept implementation of DNSSEC using the post-quantum FALCON signature scheme.
CNMAP-GUI- OpenPort scanner GUI tool (CNMAP) as you know it is the advanced tool to find open port, firewalls and we also added here heartbleed scanni
Gefilte Fish: GMail filter maker Gefilte Fish automates the creation of GMail filters. Use it like this: from gefilte import GefilteFish,
wtf-CTF_Writeups Table of Contents Table of Contents Crypto Misc Reverse Pwn Web Crypto wtf_Bot Author: Madjelly Join the discord server!You know how
Welcome to HubbleStack!! You can find the docs here You can file an issue here Follow us on Twitter! Development Below are sample instructions to setu
SSLyze SSLyze is a fast and powerful SSL/TLS scanning tool and Python library. SSLyze can analyze the SSL/TLS configuration of a server by connecting
Security-TXT is a python package for retrieving, parsing and manipulating security.txt files.
ezNTFS ezNTFS is an easy-to-use wrapper for NTFS-3G on macOS. ezNTFS can be used as a menu bar app, or via the CLI in the terminal. Installation To us
A script based on sqlmap that uses sql injection vulnerabilities to traverse the existence o
CVE-2021-26084 - Confluence Server Webwork OGNL injection An OGNL injection vulnerability exists that would allow an authenticated user and in some in
payload dumper Dumps the payload.bin image found in Android update images. Has significant performance gains over other tools due to using multiproces
Static Token And Credential Scanner What is it? STACS is a YARA powered static credential scanner which suports binary file formats, analysis of neste
vulnerable-apis vulnerable APIs inspired by https://github.com/mattvaldes/vulnerable-api Setup Docker If, Out of the box docker pull kmmanoj/vulnerabl
This tool search for SSRF using predefined settings in different parts of a request (path, host, headers, post and get parameters).
This project is no longer maintained March 2020 Update: Please go see the amazing Pysa tutorial that should get you up to speed finding security vulne
CVE-2021-22205 GitLab CE/EE Preauth RCE using ExifTool This project is for learning only, if someone's rights have been violated, please contact me to
Log4j-CVE-2021-44228 Mass Check Vulnerable Log4j CVE-2021-44228 Introduction Actually I just checked via Vulnerable Application from https://github.co
86 Dec 31, 2022
1 Dec 29, 2021
10 Nov 10, 2022
4 Feb 03, 2022
9 Mar 05, 2022
31 Sep 28, 2022
6 Jun 07, 2021
368 Jan 04, 2023
2.8k Jan 03, 2023
3 Feb 07, 2022
34 Dec 01, 2022
2 Nov 09, 2022
295 Jan 06, 2023
7 Nov 17, 2022
81 Dec 27, 2022
9 Jun 01, 2022
13 Jul 04, 2021
2.1k Dec 25, 2022
164 Dec 10, 2022
6 Dec 28, 2022