000pp / pwnfacesLinks
π Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project supports SOCKS proxy to prioritize anonymity.
β19Updated 2 years ago
Alternatives and similar repositories for pwnfaces
Users that are interested in pwnfaces are comparing it to the libraries listed below
Sorting:
- π WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.β26Updated 2 years ago
- β45Updated 2 years ago
- An MS Sharepoint and Frontpage Auditing Toolβ52Updated 9 months ago
- β26Updated 3 years ago
- Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerabilityβ86Updated last year
- A websocket-based reverse (javascript) shell for XSS attacks.β29Updated 2 years ago
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)β87Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log fileβ69Updated 2 years ago
- β35Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.β79Updated last year
- ElasticSearch exploit and Pentesting guide for penetration testerβ29Updated 2 years ago
- A better way of querying certificate transparency logsβ86Updated 5 months ago
- A Python based ingestor for BloodHoundβ85Updated 2 years ago
- Tool to enable blind sql injection attacks against websockets using sqlmapβ65Updated 4 months ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookiesβ25Updated 4 years ago
- β39Updated 2 years ago
- β42Updated last year
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.β47Updated 2 years ago
- This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"β27Updated 7 years ago
- https://github.com/ManhNho/AWAE-OSWEβ11Updated 5 years ago
- User enumeration and password spraying tool for testing Azure ADβ70Updated 3 years ago
- π¦ Python project to identify and scan for vulnerabilities related to the Joomla CMS project. It scans for common misconfigurations and pβ¦β173Updated last year
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.β36Updated 3 years ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LABβ12Updated 2 years ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.β48Updated 2 years ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.β76Updated last year
- Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...β24Updated 7 months ago
- OpenNetAdmin 18.1.1 - Remote Code Executionβ30Updated 5 years ago
- Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) courseβ21Updated last year
- γπͺγLinux Backdoor based on ICMP protocolβ64Updated 8 months ago