assetnote / exploits
Repository to store exploits created by Assetnotes Security Research team
☆176Updated last year
Alternatives and similar repositories for exploits:
Users that are interested in exploits are comparing it to the libraries listed below
- CVE-2023-33733 reportlab RCE☆114Updated last year
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆86Updated 11 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 9 months ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆131Updated 10 months ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆90Updated last year
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆77Updated 4 months ago
- Microsoft SharePoint Server Elevation of Privilege Vulnerability☆229Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆115Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆91Updated 9 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆74Updated 11 months ago
- Session Hijacking Visual Exploitation☆196Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆58Updated last year
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆106Updated 10 months ago
- MOVEit CVE-2023-34362☆139Updated last year
- ☆150Updated 8 months ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆107Updated 2 years ago
- RCE exploit for CVE-2023-3519☆221Updated last year
- ☆34Updated 2 years ago
- [PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)☆88Updated 2 years ago
- CVE-2024-3400 Palo Alto OS Command Injection☆156Updated 10 months ago
- Apache Spark Shell Command Injection Vulnerability☆88Updated 2 years ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- DHCP Server Remote Code Execution impact: 2008 R2 SP1 до Server 2019☆69Updated last year
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆117Updated last year
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆126Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆61Updated 2 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z, jar, war, apk and ipa …☆94Updated 10 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 9 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆124Updated 5 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year