Local File Inclusion Scanner and Exploiter
Features 1- Scanner
2- Exploiter
Exploiter Attack Vectors:
1- /proc/self/environ
2- /var/log/auth.log
3- Apache Log Poisoning
4- php://input
5- Php Sessions and Cookies
6- Data Wrapper
7- SMTP Poisoning
8- All attacks in one
Installation
Usage
charlotte c++ fully undetected shellcode launcher ;) releasing this to celebrate the birth of my newborn description 13/05/2021: c++ shellcode launche
A python tool capable of creating HUGE wordlists. Has the ability to add custom words for concatenation in any way you see fit.
Flask-SeaSurf SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF). CSRF vulnerabilities have been found in large and popular
Multi-Process Vulnerability Tool
log4j-Scanner scanner for log4j cat web-urls.txt | python3 log4j.py ID.burpcollaborator.net web-urls.txt http://127.0.0.1:8080 https://www.google.c
CVE-2021-40859 Auerswald COMpact 8.0B Backdoors exploit About Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow a
log4j-finder A Python3 script to scan the filesystem to find Log4j2 that is vulnerable to Log4Shell (CVE-2021-44228) It scans recursively both on disk
About This repo contains some malware analysis writeups i've created over time m
AmiEviL - This program uses the Virus Total API to determine if your suspicious file is malicious or not. The program requests the hash of the file and outputs information (if any). This version will
proto A fast tool to scan prototype pollution vulnerability Syntax python3 proto.py -l alive.txt Requirements Selenium Google Chrome Webdriver Note :
Industry ready custom API payload with an easy format for building Python APIs (Django/Django Rest Framework) Yosh! If you are a django backend develo
-Python-DNS-Lookup- ✨ 🌟 Python DNS Lookup ✨ 🌟 The Domain Name System (DNS) is
██╗██████╗ ██████╗ █████╗ █████╗ ███╗ ██╗███╗ ██╗███████╗██████╗ ██║██╔══██╗ ██╔════╝██╔══██╗██╔══██╗████╗ ██║████╗ ██║██╔════╝██╔══██
DoSer.py - Simple DoSer in Python What is DoSer? DoSer is basically an HTTP Denial of Service attack that affects threaded servers. It works like this
little advanced subdomain scanner made in python, works very quick and has options to change the port u want it to connect for
Animal Jam 0day No-Auth Force Password Reset via API Now patched 0day for force reseting an accounts password Used until patched to cause anarchy. Pro
💣 Bomb Crypto Bot 💣 ⚠️ Warning I am not responsible for any penalties incurred by those who use the bot, use it at your own risk. 📄 Documentation -
Vital What is Vital? Vital is malware primarily used to collect and extract information from the Discord desktop client. While it has other features (
scad-build This is a multi-STL OpenSCAD build system based around GNU make. It supports dynamic build targets, intelligent previews with user-defined
CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17, just some sm
894 Dec 25, 2022
9 Oct 05, 2022
183 Dec 28, 2022
1 Dec 22, 2021
5 Jun 26, 2022
6 Sep 22, 2022
431 Dec 22, 2022
14 Jun 22, 2022
1 Jan 03, 2022
4 Aug 31, 2021
7 Sep 30, 2022
2 Feb 14, 2022
2 Dec 18, 2021
8 Sep 02, 2022
5 Nov 23, 2021
10 Nov 17, 2022
4 Apr 27, 2022
59 Dec 01, 2022
1 Dec 21, 2021
16 Dec 18, 2022