649 / Apache-Struts-Shodan-Exploit
This tool takes advantage of CVE-2018-11776 and Shodan to perform mass exploitation of verified and vulnerable Apache Struts servers.
☆52Updated 6 years ago
Alternatives and similar repositories for Apache-Struts-Shodan-Exploit:
Users that are interested in Apache-Struts-Shodan-Exploit are comparing it to the libraries listed below
- Deploy payloads to *Nix systems en masse☆108Updated 5 years ago
- A weaponized version of CVE-2018-9206☆62Updated 6 years ago
- Discovers and exploits hosts vulnerable to MS08-067/MS17-010☆41Updated 7 years ago
- Working Python test and PoC for CVE-2018-11776, includes Docker lab☆125Updated 6 years ago
- Joomla Vulnerability Component Scanner☆60Updated 6 years ago
- Automatic remote/local file inclusion vulnerability analysis and exploit tool☆60Updated 5 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- Essential tool for finding blind injection attacks.☆50Updated 6 years ago
- ☆101Updated 6 years ago
- SA-CORE-2018-004 POC #drupalgeddon3☆42Updated 6 years ago
- Metasploit msfvenom Bash Completions Generator☆42Updated 8 years ago
- It is a simple script to exploit RCE for Samba (CVE-2017-7494 ).☆55Updated 3 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆38Updated 7 years ago
- Using IPv6 to Bypass Security☆93Updated last year
- Automates credential skimming from service accounts in Windows Registry☆75Updated 4 years ago
- Automated information gathering tool for pentest☆54Updated 8 years ago
- This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office…☆99Updated 7 years ago
- a hash query tool☆37Updated 6 years ago
- Encoded Reverse Shell Generator With Techniques To Bypass AV's☆146Updated 4 years ago
- Burp Suite Attack Selector Plugin☆61Updated 7 years ago
- Avoidz tool to bypass most A.V softwares☆139Updated 7 years ago
- Simple script to automate brutforcing blind sql injection vulnerabilities☆51Updated 7 years ago
- Test CVE-2018-0296 and extract usernames☆106Updated 6 years ago
- scripts used in my pentest work.☆44Updated 9 years ago
- Custom THP Dropper☆26Updated 7 years ago
- Listing subdomains about a main domain☆58Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 3 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆71Updated 4 years ago
- C2Shell is a shell script designed for a fast deploy of C&C servers for Red Team Operations.☆2Updated 4 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago