cfreal / tenLinks
A (small) web exploit framework
☆96Updated 2 weeks ago
Alternatives and similar repositories for ten
Users that are interested in ten are comparing it to the libraries listed below
Sorting:
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆104Updated 3 months ago
- CVE-2023-33733 reportlab RCE☆119Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆138Updated 5 years ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆227Updated 11 months ago
- Utility for creating ZipSlip archives☆78Updated 2 years ago
- A script to automate privilege escalation with CVE-2023-22809 vulnerability☆158Updated 2 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago
- Deserialization payload generator for a variety of .NET formatters☆116Updated last month
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability☆140Updated last year
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆107Updated 4 months ago
- CVE-2022-0847☆82Updated 3 years ago
- RCE exploit for CVE-2023-3519☆227Updated 2 years ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆132Updated last year
- PHP binary bugs advisory☆178Updated 3 years ago
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆217Updated 6 months ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆127Updated 2 years ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- CVE-2024-3400 Palo Alto OS Command Injection☆161Updated last year
- Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…☆124Updated last year
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆106Updated last year
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆272Updated 2 years ago
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆62Updated 2 years ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆77Updated 2 years ago
- FortiWeb CVE-2025-25257 exploit☆59Updated 2 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆99Updated last month
- ☆27Updated 2 years ago