duck-sec / CVE-2023-46604-ActiveMQ-RCE-pseudoshell
This script leverages CVE-2023046604 (Apache ActiveMQ) to generate a pseudo shell. The vulnerability allows for remote code execution due to unsafe deserialization within the OpenWire protocol.
☆15Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-2023-46604-ActiveMQ-RCE-pseudoshell
- Analyzes AdminSDHolder permissions & compares with a previous run, to detect potential backdoor/excessive persistent permission(s)☆14Updated 11 months ago
- Tomcat backdoor based on CS blog☆25Updated last year
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆15Updated 3 months ago
- Ivanti EPM SQL Injection Remote Code Execution Vulnerability☆20Updated 4 months ago
- Proof of conept to exploit vulnerable proxycommand configurations on ssh clients☆18Updated 10 months ago
- CVE-2024-23897 jenkins-cli☆13Updated 9 months ago
- This repository presents a proof-of-concept of CVE-2023-22527☆13Updated 9 months ago
- Lexmark CVE-2023-26067☆22Updated last year
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…☆19Updated 5 months ago
- Ivanti EPM AgentPortal RCE Vulnerability☆20Updated last month
- Exploit for Microsoft SharePoint 2019☆13Updated 10 months ago
- ManageEngine ADManager Command Injection☆12Updated last year
- Simple shellcode injection in Nim encrypted in XOR☆21Updated last year
- Beacon Object Files used for Cobalt Strike☆17Updated last year
- CVE-2023-20198 & 0Day Implant Scanner☆31Updated last year
- Exploit for elevation of privilege vulnerability in QuickHeal's Seqrite EPS (CVE-2023-31497).☆18Updated last year
- Atlassian Companion RCE Vulnerability Proof of Concept☆25Updated 10 months ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform☆15Updated 6 months ago
- Remotely dump NT hashes through Windows Crash dumps☆26Updated last week
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆33Updated 7 months ago
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV��☆26Updated 2 years ago
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆22Updated last year
- Exploit for CVE-2024-4883☆11Updated 4 months ago
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Updated 9 months ago
- Right-To-Left Override POC☆34Updated 2 years ago
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆25Updated 2 years ago
- CVE-2023-38389 < Wordpress < JupiterX Core < Unauthenticated Account Takeover☆27Updated 3 months ago
- ☆25Updated last year