RedSection / Red-Team-Challenge-Questions
We publish our challenge questions for everyone.
☆92Updated 3 years ago
Related projects: ⓘ
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆38Updated 3 years ago
- MySQL User Defined Functions Exploitation to RCE or PrivEsc Simple Cheat Sheet.☆14Updated 2 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆29Updated 2 years ago
- ☆55Updated this week
- Impacket is a collection of Python classes for working with network protocols.☆39Updated 2 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆106Updated 3 years ago
- PoC para las vulnerabilidades CVE-2020-14750 y cve-2020-14882☆46Updated 3 years ago
- ProxyLogon Pre-Auth SSRF To Arbitrary File Write☆123Updated 10 months ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆52Updated 4 years ago
- Citrix ADC Vulns☆85Updated 4 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- com_media allowed paths that are not intended for image uploads to RCE☆71Updated 3 years ago
- ☆88Updated this week
- ☆27Updated 2 years ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆88Updated last year
- ☆69Updated 3 years ago
- K23605346: BIG-IP iControl REST vulnerability CVE-2022-1388☆53Updated 2 years ago
- Automated script for F5 BIG-IP scanner (CVE-2020-5902) using hosts retrieved from Shodan API.☆55Updated last year
- CVE-2021-22986 & F5 BIG-IP RCE☆88Updated 3 years ago
- client-side prototype pullution vulnerability scanner☆46Updated 3 years ago
- ☆54Updated 3 years ago
- A tool combined with the advantages of masscan and nmap☆59Updated 2 years ago
- ☆34Updated this week
- Apache Flink 目录遍历漏洞批量检测 (CVE-2020-17519)☆47Updated 3 years ago
- ☆154Updated 2 years ago
- S2-061 CVE-2020-17530☆29Updated 3 years ago
- This aggressor script uses a beacon's note field to indicate the health status of a beacon.☆138Updated 2 years ago
- Template Injection in Email Templates leads to code execution on Jira Service Management Server☆48Updated 3 years ago
- ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit☆47Updated 2 years ago