Mass Check Vulnerable Log4j CVE-2021-44228
Actually I just checked via Vulnerable Application from https://github.com/christophetd/log4shell-vulnerable-app (because I'm lazy to find live target xD) so you can develop or change this code according to your knowledge ;)
Thug The number of client-side attacks has grown significantly in the past few years shifting focus on poorly protected vulnerable clients. Just as th
CVE-2021-23132 com_media allowed paths that are not intended for image uploads to RCE. CVE-2020-24597 Directory traversal in com_media to RCE Two CVEs
charlotte c++ fully undetected shellcode launcher ;) releasing this to celebrate the birth of my newborn description 13/05/2021: c++ shellcode launche
DomainMonitor is a web project that has a RESTful API to get a domain's subdomains and whois data.
Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。
GoAhead RCE Exploit Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead ( v3.6.5) if the CGI is enabled and a CGI program is dynamic
musig2-py Experimental musig2 python code, not for production use! This is just for testing things out. All public keys are encoded as 32 bytes, assum
This project is for finding a solution to use Security Onion Elastic data with Jupyter Notebooks. The goal is to successfully use this notebook project below with Security Onion for beacon detection
STATS305C: Applied Statistics III Instructor: Scott Linderman TA: Matt MacKay, James Yang Term: Spring 2022 Stanford University Course Description: Pr
We are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account. The script enables security teams
CVE-2021-41773 Fast python tool to test apache path traversal CVE-2021-41773 in a List of url Usage :- create a live urls file and use the flag "-l" p
s3-leaks List of AWS S3 Leaks Feel free to send in a PR if you know of other leaks Date Description Notes Aug2020 S3 bucket mess up exposed 182GB of s
PokeBot Deck Builder Brute-forcing (or not!) deck builder for Pokemon Trading Card Game. Warning: intensely not optimized and spaghetti coded Credits
Valeria_stealer- Requirements : python 3.9.2 and higher (4Feb 2022) program dete
Free HTTP Proxy List 🌍 It is a lightweight project that hourly scrapes lots of
UnicodeToy Unicode fuzzer for various purposes Unicode based on version 14.0 features Generate the shortest xss domain payload Generate unicode str, u
Northwave Log4j CVE-2021-44228 checker Friday 10 December 2021 a new Proof-of-Concept 1 addressing a Remote code Execution (RCE) vulnerability in the
About Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Changed from sam-the-admin. Usage SAM THE ADMIN CVE-202
LDAP Relay Scan A tool to check Domain Controllers for LDAP server protections r
DonPAPI Dumping revelant information on compromised targets without AV detection DPAPI dumping Lots of credentials are protected by DPAPI (link ) We a
896 Dec 19, 2022
67 Nov 09, 2022
894 Dec 25, 2022
2 Feb 05, 2022
764 Jan 05, 2023
2 Dec 12, 2021
14 Jul 08, 2022
4 Jun 08, 2022
14 Aug 11, 2022
13 Jan 04, 2022
12 Nov 09, 2022
291 Dec 28, 2022
0 Jan 10, 2022
3 May 05, 2022
142 Jan 05, 2023
33 Nov 27, 2022
125 Dec 09, 2022
500 Jan 06, 2023
315 Dec 18, 2022
580 Jan 09, 2023