VMware vCenter earlier v(7.0.2.00100) unauthorized arbitrary file read

Last update: Sep 23, 2022

Overview

vcenter_fileread_exploit

VMware vCenter earlier v(7.0.2.00100) unauthorized arbitrary file read

Usage

python3 vCenter_fileread.py http(s)://ip

References

https://github.com/l0ggg/VMware_vCenter?fbclid=IwAR3JfQTRI7ZGcsB2nh-IAZPkCLwGgiLcv_u1LBxHDCzULcUDvH14Z2yhG0g .

Owner

Ashish Kunwar

Researcher @ RISKIQ | I deal with 0days and malwares

GitHub Repository

A Burp Pro extension that adds log4shell checks to Burp Scanner

scan4log4shell A Burp Pro extension that adds log4shell checks to Burp Scanner, written by Daniel Crowley of IBM X-Force Red. Installation To install

26 Mar 15, 2022

PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)

PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager) This script allows to check and exploit missing authentication checks in

82 Nov 09, 2022

Linus-png.github.io - Versionsverwaltung & Open Source Hausaufgabe

Let's Git - Versionsverwaltung & Open Source Hausaufgabe Herzlich Willkommen zu

1 Jan 24, 2022

Windows Virus who destroy some impotants files on C:\windows\system32\

psychic-robot Windows Virus who destroy some importants files on C:\windows\system32\ Signatures of psychic-robot.PY (python file) : Bkav Pro : ASP.We

1 Jan 06, 2022

Generate MIPS reverse shell shellcodes easily !

MIPS-Reverse MIPS-Reverse is a tool that can generate shellcodes for the MIPS architecture that launches a reverse shell where you can specify the IP

29 Jul 27, 2021

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

CVE-2021-31166: HTTP Protocol Stack Remote Code Execution Vulnerability This is a proof of concept for CVE-2021-31166 ("HTTP Protocol Stack Remote Cod

820 Dec 18, 2022

Magicspoofing - A python3 script for search possible misconfiguration in a DNS related to security protections of email service from the domain name

A python3 script for search possible misconfiguration in a DNS related to security protections of email service from the domain name. This project is for educational use, we are not responsible for i

20 Dec 02, 2022

MD5-CRACKER - A gmail brute force app created with python3

MD5-CRACKER So this is my first app i created with python3 . if you guys downloa

2 Nov 10, 2022

Uma ferramenta de segurança da informação escrita em python3,capaz de dar acesso total ao computador de alguém!

shell-reverse Uma ferramenta de segurança da informação escrita em python3, capaz de dar acesso total ao computador de alguém! A cybersecurity tool wr

1 Nov 03, 2021

RDP Stealer

RDP Stealer RDP Stealer by lamp Require Python How To Use Download This Source Extract The Zip File Change webhook url Convert to exe send to target I

14 Nov 26, 2022

SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)

Bad Blood Bad Blood is an exploit for CVE-2021-20038, a stack-based buffer overflow in the httpd binary of SMA-100 series systems using firmware versi

80 Dec 29, 2022

An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.

Log4JHunt An automated, reliable scanner for the Log4Shell CVE-2021-44228 vulnerability. Video demo: Usage Here the help usage: $ python3 log4jhunt.py

39 Nov 21, 2022

A malware to encrypt all the .txt and .jpg files in target computer using RSA algorithms

A malware to encrypt all the .txt and .jpg files in target computer using RSA algorithms. Change the Blackgound image of targets' computer. and decrypt the targets' encrypted files in our own compute

2 Dec 02, 2022

Herramienta para descargar eventos de Sucuri WAF hacia disco.

Descarga los eventos de Sucuri Script para descargar los eventos del Sucuri Web Application Firewall (WAF) en el disco como archivos CSV. Requerimient

2 Nov 29, 2021

Bypass ReCaptcha: A Python script for dealing with recaptcha

Bypass ReCaptcha Bypass ReCaptcha is a Python script for dealing with recaptcha.

1 Jan 11, 2022

A powerful password generator utility which utilizes the slot technique to generate strong passwords of required length having combinations of lower and upper characters, digits and symbols.

Bitpass Password Generator Installation Make sure Python 3+ is installed

6 Feb 02, 2022

VMware vCenter earlier v(7.0.2.00100) unauthorized arbitrary file read

Related tags

Overview

vcenter_fileread_exploit

Usage

References

Owner

Ashish Kunwar

A Burp Pro extension that adds log4shell checks to Burp Scanner

PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)

Linus-png.github.io - Versionsverwaltung & Open Source Hausaufgabe

Windows Virus who destroy some impotants files on C:\windows\system32\

Generate MIPS reverse shell shellcodes easily !

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

Magicspoofing - A python3 script for search possible misconfiguration in a DNS related to security protections of email service from the domain name

MD5-CRACKER - A gmail brute force app created with python3

Uma ferramenta de segurança da informação escrita em python3,capaz de dar acesso total ao computador de alguém!

RDP Stealer

SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)

An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.

A malware to encrypt all the .txt and .jpg files in target computer using RSA algorithms

Herramienta para descargar eventos de Sucuri WAF hacia disco.

Bypass ReCaptcha: A Python script for dealing with recaptcha

A powerful password generator utility which utilizes the slot technique to generate strong passwords of required length having combinations of lower and upper characters, digits and symbols.

Instagram brute force tool that uses tor as its proxy connections

FBGen is simple facebook user based wordlist generator using Username/ID and cookie.

威胁情报播报

wsvuls - website vulnerability scanner detect issues [ outdated server software and insecure HTTP headers.]