cfreal / tenLinks
A (small) web exploit framework
☆92Updated last week
Alternatives and similar repositories for ten
Users that are interested in ten are comparing it to the libraries listed below
Sorting:
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated last month
- CVE-2023-33733 reportlab RCE☆119Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆222Updated 9 months ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆131Updated 5 years ago
- Repository to store exploits created by Assetnotes Security Research team☆180Updated last year
- out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability☆137Updated last year
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆108Updated last year
- Deserialization payload generator for a variety of .NET formatters☆74Updated last week
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- RCE exploit for CVE-2023-3519☆226Updated last year
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆29Updated last year
- PoCs of RCEs against open source C2 servers☆86Updated 10 months ago
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆70Updated 2 years ago
- Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…☆116Updated last year
- Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE☆196Updated 8 months ago
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆17Updated 10 months ago
- CVE-2022-0847☆81Updated 3 years ago
- Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)☆113Updated 7 months ago
- A script to automate privilege escalation with CVE-2023-22809 vulnerability☆156Updated 2 years ago
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆62Updated 2 years ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆128Updated last year
- ☆27Updated 2 years ago
- PHP binary bugs advisory☆180Updated 3 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆104Updated 2 months ago
- CVE-2024-3400 Palo Alto OS Command Injection☆160Updated last year
- Fake MySQL Server that attempts to steal files from clients.☆21Updated 4 years ago