CVE-2020-14756
WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar
README
project base on https://github.com/Y4er/CVE-2020-2555 and weblogic_cmd
test on 12.2.1.4.0 and jdk 1.8.0_221
WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar
Overview
pwncat module that automatically exploits CVE-2021-4034 (pwnkit)
pwncat_pwnkit Introduction The purpose of this module is to attempt to exploit CVE-2021-4034 (pwnkit) on a target when using pwncat. There is no need
33 Jul 01, 2022
IDA2Obj is a tool to implement SBI (Static Binary Instrumentation).
IDA2Obj IDA2Obj is a tool to implement SBI (Static Binary Instrumentation). The working flow is simple: Dump object files (COFF) directly from one exe
94 Dec 13, 2022
Password-Manager - This app can generate ,save , find and delete passwords.
Password-Manager This app can generate ,save , find and delete passwords. In the StartUp() Function , there are three buttons to choose from : Generat
1 Jan 01, 2022
An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
Log4JHunt An automated, reliable scanner for the Log4Shell CVE-2021-44228 vulnerability. Video demo: Usage Here the help usage: $ python3 log4jhunt.py
39 Nov 21, 2022
DNS hijacking via dead records automation tool
DeadDNS Multi-threaded DNS hijacking via dead records automation tool How it works 1) Dig provided subdomains file for dead DNS records. 2) Dig the fo
45 Dec 20, 2022
Password List Creator Simple !
Password List Creator Simple !
4 Jan 27, 2022
A proxy for asyncio.AbstractEventLoop for testing purposes
aioloop-proxy A proxy for asyncio.AbstractEventLoop for testing purposes. When tests writing for asyncio based code, there are controversial requireme
12 Dec 12, 2022
Simples brute forcer de diretorios para web pentest.
🦑 dirbruter Simples brute forcer de diretorios para web pentest. ❕ Atenção Não ataque sites privados. Isto é illegal. 🖥️ Pré-requisitos Ultima versã
6 Jan 22, 2022
GRR Rapid Response: remote live forensics for incident response
GRR Rapid Response is an incident response framework focused on remote live forensics. Build Type Status Tests End-to-end Tests Windows Templates Linu
4.3k Jan 05, 2023
Generate MIPS reverse shell shellcodes easily !
MIPS-Reverse MIPS-Reverse is a tool that can generate shellcodes for the MIPS architecture that launches a reverse shell where you can specify the IP
29 Jul 27, 2021
Exploit for GitLab CVE-2021-22205 Unauthenticated Remote Code Execution
Vuln Impact An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files tha
2 Dec 30, 2021
Python library to prevent XSS(cross site scripting attach) by removing harmful content from data.
A tool for removing malicious content from input data before saving data into database. It takes input containing HTML with XSS scripts and returns va
2 Jul 05, 2022
NoSecerets is a python script that is designed to crack hashes extremely fast. Faster even than Hashcat
NoSecerets NoSecerets is a python script that is designed to crack hashes extremely fast. Faster even than Hashcat How does it work? Instead of taking
9 Jul 04, 2022
Update of uncaptcha2 from 2019
YouTube Video Proof of Concept I created a new YouTube Video with technical Explanation for breaking Google's Audio reCAPTCHAs: Click on the image bel
153 Dec 20, 2022
Tenssens framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources.
Tenssens framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources.
31 Oct 21, 2022
USSR-Scanner - USSR Scanner with python
Purposes ? Hey there is abosolutely no need to do this we do it only to irritate
2 Jan 24, 2022
A passive-recon tool that parses through found assets and interacts with the Hackerone API
Hackerone Passive Recon Tool A passive-recon tool that parses through found assets and interacts with the Hackerone API. Setup Simply run setup.sh to
4 Jan 13, 2022
SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF).
Flask-SeaSurf SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF). CSRF vulnerabilities have been found in large and popular
183 Dec 28, 2022
ssh-audit is a tool for ssh server & client configuration auditing.
SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
1.4k Dec 31, 2022
Ini membuat tema berbasis bendera Indonesia with Python + Linux.py
tema Ubah Tema Termux Menjadi Linux Ubah Font Termux Jadi Linux dibuat oleh wahyudioputra INSTALL pkg update && pkg upgrade pkg install python pkg ins
2 Nov 30, 2021