Transition form local file inclusion attacks to remote code exection
☆69Aug 26, 2020Updated 5 years ago
Alternatives and similar repositories for LFI---RCE-Cheat-Sheet
Users that are interested in LFI---RCE-Cheat-Sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A set of scripts to help automate the management of Burp Collaborator☆13Sep 5, 2025Updated 9 months ago
- Can run a payload shellcode in-memory by injecting a process. (does not bypass AV).☆16Sep 1, 2025Updated 10 months ago
- A platform based on Node & RasPi to allow anyone to easily build apps and games for a NeoPixel table.☆10Mar 5, 2023Updated 3 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Mar 15, 2019Updated 7 years ago
- Command-line client to interact with Hack The Box☆16Apr 9, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Containers Wrapper is a Go library that provides a convenient and unified interface for interacting with container engines such as Docker…☆13Sep 10, 2023Updated 2 years ago
- my nuclei templates #new☆10Jun 24, 2024Updated 2 years ago
- Pentester plugin for Oh-My-Zsh. Boosting efficiency & and saving time with common initial tasks for pentesting☆20Jan 23, 2025Updated last year
- This repository contains a graphical representation (Mind maps) of specific topics, so one can utilize it as a handbook for that specific…☆17Feb 10, 2022Updated 4 years ago
- Vulnerable web site. Used to test sentinel features.☆11Nov 18, 2016Updated 9 years ago
- A Sublime Text plugin that allows for Nmap syntax highlighting☆13Sep 14, 2024Updated last year
- PoC for CVE-2022-46169 - Unauthenticated RCE on Cacti <= 1.2.22☆29May 5, 2023Updated 3 years ago
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆36May 27, 2023Updated 3 years ago
- TL;DR: Mutate a binary to identify potential exploit candidates☆11Jan 12, 2026Updated 5 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Browser agnostic extension that enables pasting into password fields...☆15Jan 12, 2020Updated 6 years ago
- ☆35Oct 25, 2023Updated 2 years ago
- Monitor your study sessions, log your study hours, set goals, and watch your productivity progress.☆10May 19, 2024Updated 2 years ago
- List of payloads: reverse shell, bind shell, webshell.☆16Feb 26, 2022Updated 4 years ago
- Damn Vulnerable Rails app☆14Sep 20, 2012Updated 13 years ago
- make your machine look like a sandbox/vm 🤖☆29Aug 17, 2022Updated 3 years ago
- ⚡ Starter Kit to build static websites fast with Middleman and Bootstrap☆11Oct 18, 2024Updated last year
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆21Apr 14, 2021Updated 5 years ago
- My backdoor script for a vulnerable version of UnrealIRCd☆25Apr 29, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆11Oct 1, 2019Updated 6 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Jan 6, 2021Updated 5 years ago
- Send controlled amount of bytes, send msf-pattern, calculate offset, custom buffer, badcharacters all in one.☆15Apr 20, 2024Updated 2 years ago
- Toolkit for manual buffer exploitation, which features a basic network socket fuzzer, offset pattern generator and detector, bad characte…☆24Nov 24, 2019Updated 6 years ago
- Application Security Mind Maps☆12Apr 10, 2021Updated 5 years ago
- Remote Task Scheduler Enumeration☆13Jul 9, 2024Updated last year
- A collection of config files for linux focusing on hackthebox theme☆56Apr 10, 2026Updated 2 months ago
- A bash tool used to install famous bug bounty tools. Mainly used when setting up a fresh environment.☆16Mar 20, 2023Updated 3 years ago
- Inject RDPThief into memory with PowerShell.☆67Jan 21, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such a…☆13May 1, 2026Updated 2 months ago
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆62Aug 14, 2024Updated last year
- Filezilla local admin port exploit☆13Sep 13, 2017Updated 8 years ago
- Privilege escalation in Docker☆33Jun 30, 2022Updated 4 years ago
- ☆96Oct 1, 2021Updated 4 years ago
- What makes a password survive until the final 15% of hashes still left standing? Join us on the cracking equivalent of an archeological …☆14Feb 19, 2019Updated 7 years ago
- Mime type detection in ruby via file extension or file content☆10Sep 5, 2021Updated 4 years ago