0x00-0x00 / CVE-2016-2098
Ruby On Rails unrestricted render() exploit
☆16Updated 7 years ago
Alternatives and similar repositories for CVE-2016-2098:
Users that are interested in CVE-2016-2098 are comparing it to the libraries listed below
- Burp extension for automated handling of CSRF tokens☆16Updated 7 years ago
- This repository contains some details about abusing outlook.☆27Updated 6 years ago
- Abusing SketchUp to make persistence on Windows☆21Updated 6 years ago
- ☆19Updated 4 years ago
- Two Proof-Of-Concepts of SUID binary vulnerabilities on BMC Patrol allowing to elevate privileges from any linux user to root.☆12Updated 4 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆19Updated 3 years ago
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆17Updated 4 years ago
- Exploitation Script for CVE-2020-0688 "Microsoft Exchange default MachineKeySection deserialize vulnerability"☆11Updated 5 years ago
- Everything about xss protection technology☆15Updated 5 years ago
- This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.☆18Updated 6 years ago
- Takes raw hex shellcode (e.g. msfvenom hex format) from a cmd line arg, text file, or URL download and runs it.☆19Updated 6 years ago
- Spin up a reverse proxy quickly on Heroku☆14Updated 4 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Converts JBoss/Wildfly management users properties file to hashcat format compatible with mode 20☆12Updated 5 years ago
- A Flexible Web Shell Client, Built on Electron☆13Updated 2 years ago
- Apfell implant written in C#.☆8Updated 4 years ago
- CVE-2020-13942 unauthenticated RCE POC through MVEL and OGNL injection☆28Updated 4 years ago
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago
- ☆13Updated 3 years ago
- RCE in NPM VSCode Extension☆20Updated 4 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- RCE in Slanger using deserialization of Ruby objects☆11Updated 6 years ago
- ADD/SUB encoder for alphanumeric shellcode☆9Updated 5 years ago
- Useful Windows and AD tools☆15Updated 3 years ago
- ☆21Updated 5 years ago
- Leak windows system info through a docx file☆12Updated 5 years ago
- Convert Empire profiles to Apache mod_rewrite scripts☆27Updated 5 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Merge results from NMAP and Masscan into one CSV file☆18Updated 6 years ago