chipik / SAP_RECON
PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
☆215Updated 3 years ago
Related projects: ⓘ
- CVE-2018-13379☆250Updated 5 years ago
- Exfiltrate blind remote code execution output over DNS via Burp Collaborator.☆247Updated 2 years ago
- SAP Gateway RCE exploits☆150Updated 4 years ago
- cve-2020-0688☆322Updated last year
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- ☆126Updated 2 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆106Updated 3 years ago
- ☆277Updated 2 years ago
- ☆203Updated 3 years ago
- Data extraction tool for Docker Registry API☆123Updated 7 months ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆173Updated 2 years ago
- SQL Server Reporting Services(CVE-2020-0618)中的RCE☆198Updated 4 years ago
- SNMP data gather scripts☆77Updated 7 months ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆90Updated 2 years ago
- ☆289Updated 2 months ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆155Updated 3 years ago
- jolokia-exploitation-toolkit☆276Updated 5 months ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆342Updated 2 years ago
- PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)☆81Updated 3 years ago
- ☆116Updated 4 years ago
- MOGWAI LABS JMX exploitation toolkit☆196Updated last year
- Proof of concept for CVE-2020-5902☆72Updated 4 years ago
- ☆127Updated 6 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- Proof of Concept Exploit for vCenter CVE-2021-21972☆248Updated 3 years ago
- PoC exploit of CVE-2020-11651 and CVE-2020-11652☆117Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆581Updated 3 years ago
- ☆214Updated last year
- ☆145Updated 2 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆112Updated 4 years ago