boku7 / tailorMS-rXSS-Keylogger
Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 allows remote attackers to harvest keys pressed via unauthenticated victim clicking malicious URL and typing.
☆24Updated 4 years ago
Related projects: ⓘ
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Stock Management System v1.0 al…☆20Updated 3 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆16Updated 3 years ago
- Automate Auxiliary Module in Metasploit☆19Updated 3 years ago
- Noob Penetration tester☆10Updated 4 months ago
- Simple C2 over the Trello API☆37Updated last year
- Shell hunter for AF☆34Updated 2 years ago
- Pentesting notes☆17Updated last year
- Post-exploitation tool for attacking Active Directory domain controllers☆15Updated last year
- Serving files with conditions, serverside keying and more.☆18Updated 2 years ago
- pwncat windows c2 components☆17Updated 3 years ago
- An advanced multithreaded admin panel finder written in python.☆13Updated 3 years ago
- A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool☆14Updated last year
- ☆15Updated last year
- ☆20Updated this week
- WebApp intentionally made vulnerable to Race Condition for practicing Race Condition☆22Updated 2 years ago
- ☆10Updated this week
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated last year
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Updated 3 years ago
- Burp Suite extension for extracting metadata from files☆19Updated 3 years ago
- This a Complete tool contained box for Capture The Flag competition. Mostly I have inserted all the necessary tools. Some of the people h…☆11Updated 2 years ago
- XSS scanning with Dalfox on Github-action☆23Updated 9 months ago
- Tool to transfer credential files from Firefox to your local machine to decrypt offline.☆23Updated 2 years ago
- ☆29Updated this week
- ☆16Updated 3 years ago
- A malicious .cab creation tool for CVE-2021-40444☆12Updated 3 years ago
- ☆16Updated 2 years ago
- A simple command line tool designed to explore the mechanics of dictionary attacks on the FTP protocol.☆20Updated 3 years ago
- HTTP requests of FrontPage expolit☆23Updated 10 years ago