PlayExploits / CTF-S----challenges-pico-htb-ringzer0-etcLinks
This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"
☆14Updated last year
Alternatives and similar repositories for CTF-S----challenges-pico-htb-ringzer0-etc
Users that are interested in CTF-S----challenges-pico-htb-ringzer0-etc are comparing it to the libraries listed below
Sorting:
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆13Updated last year
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Updated 5 months ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆19Updated last year
- bypassing the twitter safety link firewall :)☆11Updated 3 months ago
- Powershell Scripts for Blue Team members☆11Updated last year
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆25Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.☆18Updated last year
- aiohttp LFI (CVE-2024-23334)☆27Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆31Updated last year
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Updated last year
- Auto exploitation tool for CVE-2024-24401.☆35Updated 11 months ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆28Updated last year
- CVE-2024-34102: Unauthenticated Magento XXE☆14Updated 7 months ago
- FWT is a security analysis and file monitoring tool that utilizes Sysmon events.☆27Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Updated 2 years ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆29Updated last year
- Exploit for CVE-2023-37903☆10Updated last year
- exfiltration/infiltration toolkit☆24Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated last year
- Check for the existence of an email on Google platforms☆17Updated last year
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆29Updated 2 years ago
- Web Path Finder☆62Updated last year
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Updated last year
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆19Updated 11 months ago
- Burp extension used to snip any header from all the requests.☆23Updated last year
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 9 months ago