PlayExploits / CTF-S----challenges-pico-htb-ringzer0-etcLinks
This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"
☆14Updated last year
Alternatives and similar repositories for CTF-S----challenges-pico-htb-ringzer0-etc
Users that are interested in CTF-S----challenges-pico-htb-ringzer0-etc are comparing it to the libraries listed below
Sorting:
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Updated 4 months ago
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆12Updated last year
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆21Updated last year
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- Powershell Scripts for Blue Team members☆11Updated last year
- ☆7Updated last year
- CVE-2024-34102: Unauthenticated Magento XXE☆14Updated 6 months ago
- An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.☆17Updated last year
- bypassing the twitter safety link firewall :)☆11Updated 2 months ago
- aiohttp LFI (CVE-2024-23334)☆27Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆31Updated 11 months ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- BoltWire v6.03 vulnerable to "Improper Access Control"☆13Updated last year
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Auto exploitation tool for CVE-2024-24401.☆36Updated 10 months ago
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆24Updated last year
- Check for the existence of an email on Google platforms☆17Updated last year
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- Exploit for CVE-2023-37903☆10Updated last year
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Updated last year
- A C2 framework for all your God Complex. A fully functional and integrated Botnet for remote command execution through user friendly UI.☆45Updated last year
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- Burp extension used to snip any header from all the requests.☆23Updated last year
- ☆13Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated 11 months ago
- FWT is a security analysis and file monitoring tool that utilizes Sysmon events.☆27Updated last year
- ☆35Updated last year
- ☆24Updated last year