Script checks provided domains for log4j vulnerability. A token is created with canarytokens.org and passed as header at request for a single domain. Every token is registered with provided email and the specific domain as note. After the script completes check your email inbox for mails from canarytokens IMPORTANT: have to be used with python3 USAGE: - python3 checkLog4J.py --filepath --email REQUIREMENTS: - requests
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
edgedressing One day while experimenting with airpwn-ng, I noticed unexpected GET requests on the target node. The node in question happened to be a W
log4j-finder A Python3 script to scan the filesystem to find Log4j2 that is vulnerable to Log4Shell (CVE-2021-44228) It scans recursively both on disk
IDARefHunter Updated: This project's been introduced on IDA Plugin Contest 2021! Why do we need RefHunter? Getting reference information in one specif
Subdomain enumeration,Web scraping and finding usernames automation script written in python
MSF-EXPLOIT MSF-ANDRO is a Metasploit Multi Purpose Exploiting Toolkit For Termux . Only a Basic Script , Still in Development . FEATURES : Install Me
py_annotation_switch A hack for writing switch statements in type annotations for Python. Why should I use this? You most definitely should not use th
pybuster v1.1 pybuster is a tool that is used to brute-force URLs of web servers. Features Directory busting (URI) URL replace patterns (put PYBUSTER
Springboot directory scanning
Oh365 User Finder Oh365UserFinder is used for identifying valid o365 accounts without the risk of account lockouts. The tool parses responses to ident
CloakifyFactory CloakifyFactory & the Cloakify Toolset - Data Exfiltration & Infiltration In Plain Sight; Evade DLP/MLS Devices; Social Engineering of
CVE-2021-33564 PoC Exploit script for CVE-2021-33564 (Argument Injection in Dragonfly Ruby Gem). Usage Arbitrary File Read python3 poc.py -u https://
IPscan This Script is Framework To automate IP process large scope For Bug Hunti
SARveillance Sentinel-1 SAR time series analysis for OSINT use. Description Generates a time lapse GIF of the Sentinel-1 satellite images for the loca
Industry ready custom API payload with an easy format for building Python APIs (Django/Django Rest Framework) Yosh! If you are a django backend develo
finitevolume2-python Finite Volume simulation of the Raleigh-Taylor Instability Create Your Own Finite Volume Fluid Simulation (With Python): Part 2 B
Log4jScanner Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains. Disc
使用方法&免责声明 该脚本为Apache Flink 目录遍历漏洞批量检测 (CVE-2020-17519)。 使用方法:Python CVE-2020-17519.py urls.txt urls.txt 中每个url为一行,漏洞地址输出在vul.txt中 影响版本: Apache Flink 1
APKLeaks - Scanning APK file for URIs, endpoints & secrets.
Mystikal macOS Initial Access Payload Generator Related Blog Post: https://posts.specterops.io/introducing-mystikal-4fbd2f7ae520 Usage: Install Xcode
2.8k Dec 29, 2022
43 Dec 23, 2022
431 Dec 22, 2022
29 Dec 04, 2022
12 Nov 22, 2022
22 Dec 29, 2022
6 Oct 17, 2021
1 Jan 05, 2022
87 Dec 28, 2022
414 Jan 02, 2023
3 Oct 18, 2022
12 Nov 09, 2022
8 Mar 12, 2022
21 Dec 09, 2022
7 Sep 30, 2022
12 Sep 01, 2022
35 Dec 12, 2022
45 Sep 21, 2022
3.5k Jan 09, 2023
206 Dec 31, 2022