SamJoan / pwlist
Password lists obtained from strangers attempting to log in to my server.
☆221Updated 6 years ago
Alternatives and similar repositories for pwlist:
Users that are interested in pwlist are comparing it to the libraries listed below
- Blaze Telegram Backdoor Toolkit is a post-exploitation tool that leverages the infrastructure of Telegram as a C&C☆197Updated 6 years ago
- An exploit for Apache Struts CVE-2017-9805☆249Updated 7 years ago
- RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: h…☆306Updated 7 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆141Updated 7 years ago
- Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective wa…☆318Updated 6 years ago
- Fuzzbunch Python-Wine wrapper☆57Updated 7 years ago
- An information gathering tool to collect git commit emails in version control host services☆153Updated 5 years ago
- Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution☆391Updated 7 years ago
- Multi-threaded tool for scanning many hosts for CVE-2014-0160.☆573Updated 9 years ago
- Running CVE-2017-8759 exploit sample.☆255Updated 5 years ago
- CVE-2018-10933 very simple POC☆128Updated 6 years ago
- PyShell makes interacting with web-based command injection less painful, emulating the feel of an interactive shell as much as possible.☆253Updated 7 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆226Updated 6 years ago
- ☆601Updated 3 months ago
- A small python script to check for Cross-Site Tracing (XST)☆136Updated 9 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…☆160Updated 3 years ago
- Python script that acts like the original sudo binary to fool users into entering their passwords☆72Updated 4 years ago
- Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.☆219Updated last year
- Acunetix 0day RCE☆192Updated 8 years ago
- A JBoss script for obtaining remote shell access☆170Updated 4 years ago
- Password lists for use in penetration testing situations, broken up by TLD.☆319Updated 9 years ago
- Brosec - An interactive reference tool to help security professionals utilize useful payloads and commands.☆355Updated 2 years ago
- An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically☆488Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- The Inspector tool is a privilege escalation helper (PoC), easy to deployed on web server, this tool can list process running with root, …☆121Updated 6 years ago
- An exploit for Apache Struts CVE-2018-11776☆301Updated 6 years ago
- Add headers to all Burp requests to bypass some WAF products☆330Updated 7 years ago
- CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.☆173Updated 7 years ago
- Shodan HQ nmap plugin - passively scan targets☆152Updated 8 years ago
- CMS Detection and Exploit Kit based on Whatcms.org API☆252Updated 2 months ago