BishopFox / CVE-2023-27997-checkView external linksLinks
Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing
☆134May 8, 2024Updated last year
Alternatives and similar repositories for CVE-2023-27997-check
Users that are interested in CVE-2023-27997-check are comparing it to the libraries listed below
Sorting:
- POC FortiOS SSL-VPN buffer overflow vulnerability☆27Jun 16, 2023Updated 2 years ago
- xortigate-cve-2023-27997☆65Oct 12, 2023Updated 2 years ago
- RCE exploit for CVE-2023-3519☆229Aug 23, 2023Updated 2 years ago
- Decrypt encrypted Fortienet FortiOS firmware images☆143Aug 2, 2023Updated 2 years ago
- A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager☆355Oct 13, 2022Updated 3 years ago
- out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability☆144Mar 16, 2024Updated last year
- VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)☆232Jun 13, 2023Updated 2 years ago
- Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519☆85Jul 23, 2023Updated 2 years ago
- Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762☆106Jul 5, 2024Updated last year
- VMware Aria Operations for Logs CVE-2023-34051☆61Oct 20, 2023Updated 2 years ago
- VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039)☆96Sep 1, 2023Updated 2 years ago
- USENIX 2023 Artifacts☆11Nov 25, 2022Updated 3 years ago
- Amsi Bypass payload that works on Windwos 11☆377Jul 30, 2023Updated 2 years ago
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆43Jan 30, 2024Updated 2 years ago
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆140Jun 2, 2023Updated 2 years ago
- Proof-of-concept exploit for CVE-2024-25153.☆42Mar 13, 2024Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆89Dec 23, 2024Updated last year
- Convert domain lists to resolved IP without duplicated, useful for strong large recon, and Bug Bounty☆13Apr 30, 2021Updated 4 years ago
- ☆161Jun 18, 2023Updated 2 years ago
- ☆46Jun 21, 2023Updated 2 years ago
- ☆10May 25, 2023Updated 2 years ago
- Microsoft SharePoint Server Elevation of Privilege Vulnerability☆235Sep 26, 2023Updated 2 years ago
- CVE-2023-22515: Confluence Broken Access Control Exploit☆147Nov 12, 2025Updated 3 months ago
- ☆82Apr 9, 2024Updated last year
- Ivanti EPM AgentPortal RCE Vulnerability☆20Sep 16, 2024Updated last year
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Jun 25, 2024Updated last year
- ☆38Jan 14, 2022Updated 4 years ago
- LPE exploit for CVE-2023-21768☆506Jul 10, 2023Updated 2 years ago
- jolokia-exploitation-toolkit☆310Dec 19, 2024Updated last year
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆14Jul 22, 2024Updated last year
- ☆827Sep 9, 2022Updated 3 years ago
- CVE-2024-23897 jenkins-cli☆15Jan 27, 2024Updated 2 years ago
- A multithreaded, queued SSH key and/or password spraying tool.☆20Jan 5, 2023Updated 3 years ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆46Jul 29, 2024Updated last year
- ☆129Jun 28, 2023Updated 2 years ago
- WEB API fuzzing☆23Apr 30, 2025Updated 9 months ago
- Federated Office365 user enumeration based on correlated response trend analysis☆50May 3, 2022Updated 3 years ago
- Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution☆23Jun 16, 2022Updated 3 years ago
- An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …☆18Oct 15, 2020Updated 5 years ago