davidenetti / SoftwareSecurityNotes
Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.
☆20Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for SoftwareSecurityNotes
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆30Updated 10 months ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Updated last year
- Burp extension used to snip any header from all the requests.☆22Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆27Updated 4 months ago
- Repo for all my exploits/PoCs☆27Updated 2 months ago
- exfiltration/infiltration toolkit☆23Updated 11 months ago
- Template Nuclei SSTI☆29Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆26Updated 4 months ago
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆22Updated 4 months ago
- ☆15Updated 11 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆29Updated 9 months ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated 11 months ago
- A BurpSuite extension for vulnerability Scanning☆26Updated 9 months ago
- ☆32Updated this week
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆43Updated 8 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- My journey and notes on learning Offensive Security from the ground up☆16Updated 8 months ago
- Fortinet FortiClient EMS SQL Injection☆43Updated 8 months ago
- Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)☆28Updated 4 months ago
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆17Updated 5 months ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Updated 6 months ago
- Monitor your target continuously for new subdomains!☆26Updated last year
- Burp Suite Extension for inserting a magic byte into responder's request☆21Updated last year
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆30Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated 2 weeks ago
- FWT is a security analysis and file monitoring tool that utilizes Sysmon events.☆24Updated 4 months ago
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆19Updated 9 months ago