fully independent exploit does not require any 3rd party binaries. The exploit spraying the payload to all possible logged HTTP Headers such as X-Forwarding , Server-IP , User-Agent
python main.py -i lhost -u http://target:targetport -c "command_to_execute" -p lhttp_port -l lldap_port
Caylent Security Catalyst Reference Architecture Examples This repository contains solutions for Caylent's Security Catalyst. The Security Catalyst is
A DOM-based G-Suite password sprayer and user enumerator
Password-Manager This app can generate ,save , find and delete passwords. In the StartUp() Function , there are three buttons to choose from : Generat
O365DevicePhish Microsoft365_devicePhish Abusing Microsoft 365 OAuth Authorization Flow for Phishing Attack This is a simple proof-of-concept script t
Outline Keychain A simple Outline Server Access Key Copy and Paste Web Interface Developed for key and password export and copy & paste for other Shad
Repo for "The Crown: Exploratory Analysis of Nim Malware" DEF CON 615 talk
1.Create a Sample Vulnerable Application . 2.Start a netcat listner . 3.Run the exploit . 5.Use jdk1.8.0_20 for better results . Exploit-db - https://
Discord-Ban-Immunity Discord exploit allowing you to be unbannable. 9/3/2021 Found in late August. Found by Passive and Me. Explanation If a user gets
Vital What is Vital? Vital is malware primarily used to collect and extract information from the Discord desktop client. While it has other features (
Example on how to query events by a RESTful API, compose CEF event format and send the events to an UDP receiver.
Dependency Combobulator Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage
Detection And Breaking IIIIIIIIIIIIIIIIIIII PPPPPPPPPPPPPPPPP VVVVVVVV VVVVVVVV I::::::::II::::::::I P:::::::
xkeysnail is yet another keyboard remapping tool for X environment written in Python. It's like xmodmap but allows more flexible remappings.
vulnz Tool for finding php source code vulnerabilities. Scans PHP source code and prints out potentially dangerous lines. This tool is useful for secu
Privacy-respecting, hackable metasearch engine / pronunciation sษหks. If you are looking for running instances, ready to use, then visit searx.space.
Blinder Have you found a blind SQL injection? Great! Now you need to export it, but are you too lazy to sort through the values? Most likely,
CHIRP A forensic collection tool written in Python. Watch the video overview ๐ Table of Contents ๐ Table of Contents ๐ง About ๐ Getting Started Pre
log4j-poc An LDAP RCE exploit for CVE-2021-44228 Log4Shell Description This demo Tomcat 8 server has a vulnerable app deployed on it and is also vulne
Lots o' Bytes ๐ฃ Make files with as many random bytes as you want! Use case Can be used to package malware that is normally small by making the downlo
PySharpSphere Inspired by SharpSphere, just another python version. Installation python3 setup.py install Features Support control both Linux and Wind
1 Oct 22, 2021
1 Apr 07, 2022
1 Jan 01, 2022
![Trewis [work] Scotch](https://avatars.githubusercontent.com/u/92666826?v=4&s=60)
4 Sep 23, 2022
1 Dec 28, 2021
43 Dec 03, 2022
7 Aug 06, 2022
9 Nov 23, 2022
59 Dec 01, 2022
3 Feb 10, 2022
84 Dec 23, 2022
1 Dec 26, 2021
809 Dec 26, 2022
1 Jan 14, 2022
12.4k Jan 08, 2023
10 Dec 06, 2022
1k Dec 09, 2022
60 Dec 10, 2022
1 Jan 13, 2022
191 Dec 22, 2022