Directory Traversal in Afterlogic webmail aurora and pro .
Description: AfterLogic Aurora and WebMail Pro products with 7.7.9 and all lower versions are affected by this vulnerability, simply sending an HTTP GET request to WebDAV EndPoint with built-in “[email protected]” and it’s the predefined password “caldav_public_user” allows the attacker to read all files under the web root.
python3 CVE-2021-26294.py http(s)://target:port
About Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Changed from sam-the-admin. Usage SAM THE ADMIN CVE-202
Log4j command generator Generate commands for CVE-2021-44228. Description The vulnerability exists due to the Log4j processor's handling of log messag
CVE-2022-22965 - vulnerable app and PoC Trial & error $ docker rm -f rce; docker build -t rce:latest . && docker run -d -p 8080:8080 --name rce rce:la
log4j-detect Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URL with multithreading The script
Security-TXT is a python package for retrieving, parsing and manipulating security.txt files.
CVE-2021-31166: HTTP Protocol Stack Remote Code Execution Vulnerability This is a proof of concept for CVE-2021-31166 ("HTTP Protocol Stack Remote Cod
Grafana V8.*任意文件读取Exp--多线程批量验证脚本 漏洞描述 Grafana是一个开源的度量分析与可视化套件。经常被用作基础设施的时间序列数据和应用程序分析的可视化,它在其他领域也被广泛的使用包括工业传感器、家庭自动化、天气和过程控制等。其 8.*版本任意文件读取漏洞,该漏洞目前为0d
Execution After Redirect (EAR) / Long Response Redirection Vulnerability Scanner written in python3, It Fuzzes All URLs of target website & then scan them for EAR
ADExplorerSnapshot.py ADExplorerSnapshot.py is an AD Explorer snapshot ingestor for BloodHound. AD Explorer allows you to connect to a DC and browse L
This program is an non-object oriented opensource, hidden and undetectable backdoor/reverse shell/RAT for Windows made in Python 3 which contains many features such as multi-client support and cross-
Heimdall Cloud Checker 🇧🇷 About Visius is a Brazilian cybersecurity startup that follows the signs of the crimson thunder ;) 🎸 ! As we value open s
brute_smb_share I wrote this small PoC after bumping into SMB servers where Hydr
netrecon A gui application used for network reconnaissance while pentesting
Hacktricks - Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Qbot-Strings-Decrypter An IDA pro python script to decrypt Qbot malware strings.
Opensource Project Simple Python Password Generator This repository is just for peoples who want to generate strong-passwords for there social-account
WELCOME TO LAYLA Layla is a python script that automatically performs recon on a
savedat-stealer Growtopia Save.dat Stealer (Auto Send To Webhook) How To Use After Change Webhook URL Compile script to exe Give to target Done Info C
log4jpwn log4j rce test environment See: https://www.lunasec.io/docs/blog/log4j-zero-day/ Experiments to trigger in various software products mentione
Files related to PoC||GTFO 21:21 - NSA’s Backdoor of the PX1000-Cr 64bit2key.py
500 Jan 06, 2023
1 Jan 03, 2022
20 Aug 25, 2022
1 Dec 15, 2021
3 Feb 07, 2022
820 Dec 18, 2022
2 Dec 16, 2021
9 Dec 12, 2022
576 Dec 23, 2022
35 Apr 17, 2022
48 Jun 20, 2022
3 Feb 21, 2022
4 Sep 03, 2022
5.8k Jan 07, 2023
6 Sep 01, 2022
15 Dec 01, 2022
68 Jan 04, 2023
9 May 01, 2022
307 Dec 24, 2022
15 Nov 26, 2022