cfreal / tenLinks
A (small) web exploit framework
☆96Updated last month
Alternatives and similar repositories for ten
Users that are interested in ten are comparing it to the libraries listed below
Sorting:
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆105Updated 4 months ago
- CVE-2023-33733 reportlab RCE☆118Updated 2 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆228Updated last year
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆140Updated 6 years ago
- Deserialization payload generator for a variety of .NET formatters☆131Updated 2 months ago
- out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability☆141Updated last year
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- Utility for creating ZipSlip archives☆79Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆90Updated last year
- A script to automate privilege escalation with CVE-2023-22809 vulnerability☆158Updated 2 years ago
- Repository to store exploits created by Assetnotes Security Research team☆180Updated last year
- RCE exploit for CVE-2023-3519☆228Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆72Updated 2 years ago
- CVE-2024-3400 Palo Alto OS Command Injection☆161Updated last year
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- CVE-2025-49844 (RediShell)☆276Updated 3 weeks ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…☆108Updated 5 months ago
- PoCs of RCEs against open source C2 servers☆87Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆106Updated last year
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆217Updated 7 months ago
- CVE-2022-0847☆84Updated 3 years ago
- Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…☆125Updated last year
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆61Updated 2 years ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆126Updated 2 years ago
- Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)☆127Updated 10 months ago
- POC for CVE-2020-13151☆36Updated 5 years ago
- FortiWeb CVE-2025-25257 exploit☆62Updated 3 months ago