Exploit grafana Pre-Auth LFI
python3 grafana-exploit.py http://site.com /etc/passwd
Or
python3 grafana-exploit.py http://site.com:8080 /etc/passwd
Interesting files
/etc/passwd
/etc/hosts
/var/lib/grafana/grafana.db
BF-Hash Herramienta para descifrar hashes por fuerza bruta Instalación git clone
python写的一款免杀工具(shellcode加载器)BypassAV,国内杀软全过(windows denfend)
CVE-2021-23132 com_media allowed paths that are not intended for image uploads to RCE. CVE-2020-24597 Directory traversal in com_media to RCE Two CVEs
MayorSecDNSScan MSDNSScan is used to identify DNS records for target domains and check for zone transfers. There really isn't much special about it, a
Compilation of resources and insights that helped me on my journey to data scientist
Kriecher is a simple Web Scanner which will run it's own checks for the OWASP top 10 https://owasp.org/www-project-top-ten/# as well as run a
RDP Stealer RDP Stealer by lamp Require Python How To Use Download This Source Extract The Zip File Change webhook url Convert to exe send to target I
Ducky Script is the payload language of Hak5 gear. Since its introduction with the USB Rubber Ducky in 2010, Ducky Script has grown in capability while maintaining simplicity. Aided by Bash for logic
Free HTTP Proxy List 🌍 It is a lightweight project that hourly scrapes lots of
Python sandbox runners for executing code in isolation aka snekbox.
AutoScanner AutoScanner是什么 AutoScanner是一款自动化扫描器,其功能主要是遍历所有子域名、及遍历主机所有端口寻找出所有http服务,并使用集成的工具进行扫描,最后集成扫描报告; 工具目前有:oneforall、masscan、nmap、crawlergo、dirse
M.E.A.T. - Mobile Evidence Acquisition Toolkit Meet M.E.A.T! From Jack Farley - BlackStone Discovery This toolkit aims to help forensicators perform d
Keylogger Bilgi Sistemleri Projesi için yapılan keylogger Projede kullanılan kütüphanelere sahip olmasanız da python dosyası çalıştığında kendisi gere
#Creator: johnry #coded by john ry GBrute python script for hack gmail account using brute force attack Commands apt update && apt upgrade git clone h
NS-LOOKUP A python script for scanning website for getting ip address of a websi
Log4j-CVE-2021-44228 Mass Check Vulnerable Log4j CVE-2021-44228 Introduction Actually I just checked via Vulnerable Application from https://github.co
Shellshock, also known as Bashdoor, is a family of security bugs in the Unix Bash shell, the first of which was disclosed on 24 September 2014. Shellshock could enable an attacker to cause Bash to ex
TTUN Server The self-hostable proxy tunnel. Running Running: docker run -e TUNNEL_DOMAIN=Your tunnel domain -e SECURE=True if using SSL ghcr.io/to
RapiDAST RapiDAST provides a framework for continuous, proactive and fully automated dynamic scanning against web apps/API. Its core engine is OWASP Z
Bitpass Password Generator Installation Make sure Python 3+ is installed
5 Apr 09, 2022
266 Jan 02, 2023
67 Nov 09, 2022
68 Dec 12, 2022
1.5k Jan 02, 2023
1 Nov 12, 2021
14 Nov 26, 2022
6 Oct 07, 2022
142 Jan 05, 2023
164 Dec 20, 2022
633 Dec 30, 2022
1 Nov 11, 2021
1 Jan 07, 2022
6 Dec 09, 2022
5 Aug 02, 2022
6 Dec 28, 2022
88 Dec 23, 2022
2 Jan 11, 2022
17 Nov 11, 2022
6 Feb 02, 2022