davidenetti / SoftwareSecurityNotes
Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.
☆20Updated 7 months ago
Related projects: ⓘ
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆28Updated 8 months ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated 9 months ago
- exfiltration/infiltration toolkit☆23Updated 8 months ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆32Updated last year
- Burp extension used to snip any header from all the requests.☆21Updated 10 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆28Updated last month
- Monitor your target continuously for new subdomains!☆26Updated last year
- Repo for all my exploits/PoCs☆28Updated this week
- ☆15Updated 8 months ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆43Updated 6 months ago
- Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)☆28Updated 2 months ago
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- A BurpSuite extension for vulnerability Scanning☆24Updated 7 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆25Updated last month
- Cobalt Strike BOFS☆16Updated 8 months ago
- ☆19Updated this week
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆31Updated 11 months ago
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆20Updated 4 months ago
- My journey and notes on learning Offensive Security from the ground up☆16Updated 6 months ago
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆41Updated 3 months ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆23Updated 9 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆29Updated 7 months ago
- nse script to identify server vulnerable to CVE-2023-3519☆14Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-7339☆12Updated last month
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆23Updated 2 months ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Updated 4 months ago
- aiohttp LFI (CVE-2024-23334)☆22Updated 6 months ago
- Herramienta en Bash ideal para extraer la información más relevante de un dominio vía rpcclient.☆15Updated last year
- Fast Path Traversal exploitation tool☆21Updated 5 months ago
- Lena's scripts/code/resources for malware analysis☆16Updated 3 months ago