BSidesSF / ctf-2022-release
2022 CTF public release
☆24Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for ctf-2022-release
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated 10 months ago
- ☆33Updated 4 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆19Updated 2 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.☆14Updated 3 years ago
- Utility for creating ZipSlip archives☆66Updated last year
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆36Updated 2 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆44Updated 2 years ago
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated last year
- an Evil Java RMI Registry.☆45Updated last year
- ☆29Updated 6 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆24Updated 9 months ago
- Copy as XMLHttpRequest BurpSuite extension☆30Updated 3 years ago
- NSE script to detect ProxyOracle☆14Updated 3 years ago
- ☆26Updated 2 years ago
- This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager☆48Updated last year
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆22Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077☆31Updated 2 years ago
- client-side prototype pullution vulnerability scanner☆46Updated 3 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆22Updated 2 years ago
- My talks...☆23Updated last month
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 2 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆37Updated 2 years ago
- some sploits☆17Updated last month
- PoC repository for CVE-2023-29007☆32Updated last year
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago