PlayExploits / CTF-S----challenges-pico-htb-ringzer0-etcLinks
This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"
☆14Updated 2 years ago
Alternatives and similar repositories for CTF-S----challenges-pico-htb-ringzer0-etc
Users that are interested in CTF-S----challenges-pico-htb-ringzer0-etc are comparing it to the libraries listed below
Sorting:
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Updated 10 months ago
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆15Updated 2 years ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Updated 2 years ago
- bypassing the twitter safety link firewall :)☆12Updated 8 months ago
- Powershell Scripts for Blue Team members☆11Updated 2 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated 2 years ago
- aiohttp LFI (CVE-2024-23334)☆27Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆21Updated last year
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆25Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Updated last year
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated 2 years ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Updated last year
- An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.☆17Updated last year
- Auto exploitation tool for CVE-2024-24401.☆36Updated last year
- CVE-2024-34102: Unauthenticated Magento XXE☆14Updated 11 months ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated 2 months ago
- FWT is a security analysis and file monitoring tool that utilizes Sysmon events.☆28Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated last year
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Updated last year
- Burp extension used to snip any header from all the requests.☆23Updated 2 years ago
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆63Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆37Updated 2 years ago
- ☆35Updated 2 years ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Updated 2 years ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆30Updated last year
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆33Updated last year
- A C2 framework for all your God Complex. A fully functional and integrated Botnet for remote command execution through user friendly UI.☆45Updated 2 years ago
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆29Updated 2 years ago
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆51Updated last year