CVE-2021-45232-RCE
CVE-2021-45232-RCE-多线程批量漏洞检测
FOFA 查询
title="Apache APISIX Dashboard"
影响范围
Apache APISIX Dashboard < 2.10.1
POC:
IP:PORT/apisix/admin/migrate/export
如有帮助,请大佬帮忙点个星星再走,谢谢!
批量漏洞检测
依赖问题自己解决,不懂百度。一般模块报错的话,自己安装对应依赖
编写与检测 
CVE-2021-45232-RCE-多线程批量漏洞检测
Overview
Owner
孤桜懶契
只有忍受过低谷的人,才能踏足山巅
____________________________________________博客:https://gylq.gitee.io/
JavaScript Raider is a coverage-guided JavaScript fuzzing framework designed for the v8 JavaScript engine
JavaScript Raider is a coverage-guided JavaScript fuzzing framework designed for the v8 JavaScript engine
105 Dec 05, 2022
SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)
Bad Blood Bad Blood is an exploit for CVE-2021-20038, a stack-based buffer overflow in the httpd binary of SMA-100 series systems using firmware versi
80 Dec 29, 2022
A gui application used for network reconnaissance while pentesting
netrecon A gui application used for network reconnaissance while pentesting
4 Sep 03, 2022
CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE
CVE-2022-1388 CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE. POST /mgmt/tm/util/bash HTTP/1.1 Host: Accept-Encoding: gzip, deflate Accept: */
81 Dec 12, 2022
Gefilte Fish GMail filter creator
Gefilte Fish: GMail filter maker Gefilte Fish automates the creation of GMail filters. Use it like this: from gefilte import GefilteFish,
31 Sep 28, 2022
Detection tool of malware(s) by checksum (useful for forensic)
🐍 malware_checker.py Detection tool of malware(s) by checksum (useful for forensic) 📦 Dependencies installation $ pip3 install -r requirements.txt
1 Jan 30, 2022
Magicspoofing - A python3 script for search possible misconfiguration in a DNS related to security protections of email service from the domain name
A python3 script for search possible misconfiguration in a DNS related to security protections of email service from the domain name. This project is for educational use, we are not responsible for i
20 Dec 02, 2022
A Telegram Bot to force users to join a specific channel before sending messages in a group.
Promoter A Telegram Bot to force users to join a specific channel before sending messages in a group. Introduction A Telegram Bot to force users to jo
1 Jan 27, 2022
The Modern Hash Identification System
🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥
1.2k Dec 28, 2022
Infection Monkey - An automated pentest tool
Infection Monkey Data center Security Testing Tool Welcome to the Infection Monkey! The Infection Monkey is an open source security tool for testing a
6k Jan 09, 2023
A Superfast SMS & Call bomber for Linux And Termux !
A Superfast SMS & Call bomber for Linux And Termux !
15 Feb 21, 2022
Cam-Hacker: Ip Cameras hack with python
Cam-Hacker Hack Cameras Mode Of Execution: apt-get install python3 apt-get insta
9 Dec 17, 2022
POC for detecting the Log4Shell (Log4J RCE) vulnerability.
log4shell-poc-py POC for detecting the Log4Shell (Log4J RCE) vulnerability. Run on a system with python3 python3 log4shell-poc.py pathToTargetFile
2 Dec 22, 2021
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
sshuttle: where transparent proxy meets VPN meets ssh As far as I know, sshuttle is the only program that solves the following common case: Your clien
9.4k Jan 04, 2023
NExfil is an OSINT tool written in python for finding profiles by username.
NExfil is an OSINT tool written in python for finding profiles by username. The provided usernames are checked on over 350 websites within few seconds.
1.4k Jan 01, 2023
The First Python Compatible Camera Hacking Tool
ZCam Hack webcam using python by sending malicious link. FEATURES : [+] Real-time Camera hacking [+] Python compatible [+] URL Shortener using bitly [
109 Dec 28, 2022
Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD).
What is Spray365? Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD). How is Spray3
246 Dec 28, 2022
Providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account.
We are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account. The script enables security teams
13 Jan 04, 2022
Generate your own NFTs and their metadata based on your desired probabilities.
Generate your own NFTs and their metadata based on your desired probabilities. Use your own art assets too! Perfect for use with Candy Machine.
7 Sep 16, 2022
edgedressing leverages a Windows "feature" in order to force a target's Edge browser to open. This browser is then directed to a URL of choice.
edgedressing One day while experimenting with airpwn-ng, I noticed unexpected GET requests on the target node. The node in question happened to be a W
43 Dec 23, 2022