PlayExploits / CTF-S----challenges-pico-htb-ringzer0-etcLinks
This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"
☆14Updated last year
Alternatives and similar repositories for CTF-S----challenges-pico-htb-ringzer0-etc
Users that are interested in CTF-S----challenges-pico-htb-ringzer0-etc are comparing it to the libraries listed below
Sorting:
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆21Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆31Updated 10 months ago
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆12Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- Auto exploitation tool for CVE-2024-24401.☆36Updated 8 months ago
- bypassing the twitter safety link firewall :)☆11Updated last month
- Burp extension used to snip any header from all the requests.☆22Updated last year
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆24Updated 10 months ago
- ☆7Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated last year
- SSH & FTP brute-forcing tool written in python☆11Updated 8 months ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated last year
- CVE-2024-34102: Unauthenticated Magento XXE☆14Updated 4 months ago
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆12Updated last year
- An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.☆16Updated last year
- ☆14Updated 2 months ago
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- backdoor exploit for vsftpd 2.3.4 on python☆15Updated last year
- CVE-2024-28955 Exploitation PoC☆34Updated 11 months ago
- aiohttp LFI (CVE-2024-23334)☆27Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Updated last year
- Exploit for CVE-2024-5009☆13Updated 10 months ago
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆21Updated last year
- There were no proper POCs for CVE-2023-30533 so I made one. (Reported by Vsevolod Kokorin)☆9Updated last year
- Cheat seet for penetration testing☆1Updated 4 months ago
- This repository contains the best fuzzing wordlist files☆33Updated 6 months ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Updated last year