MassStringer, CTF Flag Finder

Last update: Sep 06, 2022

Related tags

Security related resources massStringer

Overview

massStringer

MassStringer, CTF Flag Finder

Usage: python3 massStringer.py

Enter absolute path of the directory to scan for flags

Edit "flag = re.search("ABCTF{(.*)}",output.decode())" to change flag format

$Expected Output:\n$

Owner

SuperTsumu

Beginner ctf player

GitHub Repository

Workshop Material on VM-based Deobfuscation

Analysis of Virtualization-based Obfuscation This repository contains slides, samples and code of the 4h code deobfuscation workshop at r2con2021. We

133 Dec 18, 2022

A Superfast SMS & Call bomber for Linux And Termux !

15 Feb 21, 2022

Uncover the full name of a target on Linkedin.

Revealin Uncover the full name of a target on Linkedin. It's just a little PoC exploiting a design flaw. Useful for OSINT. Screenshot Usage $ git clon

129 Dec 21, 2022

CVE-2021-36798 Exp: Cobalt Strike < 4.4 Dos

A denial of service (DoS) vulnerability (CVE-2021-36798) was found in Cobalt Strike. The vulnerability was fixed in the scope of the 4.4 release. More

104 Nov 09, 2022

script that pulls cve collections from NVD.NIST.GOV.

# cvepull.py #script that pulls cve collections from NVD.NIST.GOV. #edit line 17 (timedelta) number to change the amount of days to search backwards

1 Dec 18, 2021

Discord Region Swapping Exploit (VC Overload)

Discord-VC-Exploit Discord Region Swapping Exploit (VC Overload) aka VC Crasher How does this work? Discord has multiple servers that lets people arou

11 Sep 10, 2022

Writeups for wtf-CTF hosted by Manipal Information Security Team as part of Techweek2021- INCOGNITO

wtf-CTF_Writeups Table of Contents Table of Contents Crypto Misc Reverse Pwn Web Crypto wtf_Bot Author: Madjelly Join the discord server!You know how

6 Jun 07, 2021

阿里云accesskey利用工具

aliyun-accesskey-Tools 此工具用于查询ALIYUN_ACCESSKEY的主机，并且远程执行命令。对于ALIYUN_ACCESSKEY利用方式可参考文章：记一次阿里云主机泄露Access Key到Getshell 工具截图安装模块 pip install -r require

826 Jan 01, 2023

Spring-0day/CVE-2022-22965

CVE-2022-22965 Spring Framework/CVE-2022-22965 Vulnerability ID: CVE-2022-22965/CNVD-2022-23942/QVD-2022-1691 Reproduce the vulnerability docker pull

4 Apr 05, 2022

A script to search, scrape and scan for Apache Log4j CVE-2021-44228 affected files using Google dorks

Log4j dork scanner This is an auto script to search, scrape and scan for Apache Log4j CVE-2021-44228 affected files using Google dorks. Installation:

5 Dec 27, 2022

A small Minecraft server to help players detect vulnerability to the Log4Shell exploit 🐚

log4check A small Minecraft server to help players detect vulnerability to the Log4Shell exploit 🐚 Tested to work between Minecraft versions 1.12.2 a

4 Dec 23, 2021

A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources to make Ubuntu 20.04 capable of both offensive and defensive security work.

infosec-fortress A python script to turn Ubuntu Desktop into a strong DFIR/RE System with some teeth (Purple Team Ops)! This is intended to create a s

41 Dec 30, 2022

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

140 Dec 16, 2022

🎻 Modularized exploit generation framework

Modularized exploit generation framework for x86_64 binaries Overview This project is still at early stage of development, so you might want to come b

30 Jan 17, 2022

A scanner and a proof of sample exploit for log4j RCE CVE-2021-44228

1.Create a Sample Vulnerable Application . 2.Start a netcat listner . 3.Run the exploit . 5.Use jdk1.8.0_20 for better results . Exploit-db - https://

7 Aug 06, 2022

BuddyPress is an open source WordPress plugin to build a community site. In releases of BuddyPress from 5.0.0 before 7.2.1 it's possible for a non-privileged, regular user to obtain administrator rights by exploiting an issue in the REST API members endpoint. The vulnerability has been fixed in BuddyPress 7.2.1. Existing installations of the plugin should be updated to this version to mitigate the issue.

CVE-2021-21389 BuddyPress 7.2.1 - REST API Privilege Escalation to RCE PoC (Full) Affected version: 5.0.0 to 7.2.0 User requirement: Subscriber user

17 Nov 09, 2022

MassStringer, CTF Flag Finder

Related tags

Overview

massStringer

Owner

SuperTsumu

Workshop Material on VM-based Deobfuscation

A Superfast SMS & Call bomber for Linux And Termux !

Uncover the full name of a target on Linkedin.

CVE-2021-36798 Exp: Cobalt Strike < 4.4 Dos

script that pulls cve collections from NVD.NIST.GOV.

Discord Region Swapping Exploit (VC Overload)

Writeups for wtf-CTF hosted by Manipal Information Security Team as part of Techweek2021- INCOGNITO

阿里云accesskey利用工具

Spring-0day/CVE-2022-22965

A script to search, scrape and scan for Apache Log4j CVE-2021-44228 affected files using Google dorks

A small Minecraft server to help players detect vulnerability to the Log4Shell exploit 🐚

A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources to make Ubuntu 20.04 capable of both offensive and defensive security work.

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

🎻 Modularized exploit generation framework

A scanner and a proof of sample exploit for log4j RCE CVE-2021-44228

A local Socks5 server written in python, used for integrating Multi-hop

logmap: Log4j2 jndi injection fuzz tool

2021hvv漏洞汇总

Uma ferramenta de segurança da informação escrita em python3,capaz de dar acesso total ao computador de alguém!