ill-deed / CVE-2025-34085-Multi-targetView external linksLinks
Multi-target unauthenticated RCE scanner for CVE-2025-34085 affecting WordPress Simple File List plugin. Uploads, renames, and triggers PHP webshells across large target sets.
☆32Jul 13, 2025Updated 7 months ago
Alternatives and similar repositories for CVE-2025-34085-Multi-target
Users that are interested in CVE-2025-34085-Multi-target are comparing it to the libraries listed below
Sorting:
- Analyze Android native `.so` files☆119Jul 28, 2025Updated 6 months ago
- A Burp Suite extension that converts IP addresses to decimal notation, useful for SSRF bypass and WAF evasion testing. Created by Harshad…☆11Dec 9, 2024Updated last year
- my nuclei templates #new☆11Jun 24, 2024Updated last year
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- ☆14Nov 8, 2024Updated last year
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆17Oct 30, 2025Updated 3 months ago
- This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScr…☆14Oct 18, 2024Updated last year
- This GitHub Pages site serves as a creative demonstration of website defacement, featuring an engaging interface and audio elements. IT i…☆12Sep 25, 2024Updated last year
- a critical memory disclosure vulnerability in MongoDB's zlib compression handling. This tool allows security researchers to extract sensi…☆25Dec 27, 2025Updated last month
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Jul 21, 2024Updated last year
- GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)☆16May 9, 2024Updated last year
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- ☆15May 8, 2025Updated 9 months ago
- Clawdbot/Moltbot/OpenClaw One-click RCE PoC 🦞 (CVE-2026-25253)☆71Jan 27, 2026Updated 2 weeks ago
- [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner☆17Sep 26, 2024Updated last year
- this nuclei template finds back up files☆22Aug 25, 2025Updated 5 months ago
- N0aziXss Origin Recon 🍓☆23Dec 16, 2025Updated last month
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆75Jan 6, 2026Updated last month
- Nuclei templates for drupal vulns... far from perfect☆18Jan 9, 2025Updated last year
- A passive way to find backups/ sensitive information.☆87Jul 10, 2025Updated 7 months ago
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆20Sep 27, 2024Updated last year
- ☆47May 31, 2024Updated last year
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆48Oct 2, 2024Updated last year
- 🕷️ Kali & Kali Purple Linux Configuration☆22Nov 14, 2024Updated last year
- Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)☆23Jul 23, 2024Updated last year
- Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.☆24Feb 20, 2024Updated last year
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆40Jun 13, 2025Updated 8 months ago
- Some oneliners with descriptions and Regex that I frequently use while doing bug hunting. More to come 🚀🚀☆22Dec 24, 2022Updated 3 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆30Oct 1, 2024Updated last year
- My personal collection of nuclei templates made for fuzzing.☆29Sep 6, 2024Updated last year
- In this repo, I have created a subdomain enumeration function that grab subdomains in deep.☆23Mar 19, 2023Updated 2 years ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Oct 29, 2024Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆77May 16, 2024Updated last year
- CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect☆30Apr 17, 2024Updated last year
- CVE-2024-21893 to CVE-2024-21887 Exploit Toolkit☆26Apr 6, 2025Updated 10 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆28Jul 21, 2024Updated last year
- Read PostgreSQL data files without credentials - forensics, data recovery, and security research tool☆34Jan 18, 2026Updated 3 weeks ago
- ☆14Dec 18, 2025Updated last month