jakabakos / Apache-OFBiz-Authentication-Bypass
This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.
☆72Updated 5 months ago
Related projects: ⓘ
- GameOver(lay) Ubuntu Privilege Escalation☆112Updated 11 months ago
- SSTI Payload Generator☆87Updated 2 years ago
- Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)☆124Updated 2 months ago
- Reverse Shell POC exploit for Dolibarr <= 17.0.0 (CVE-2023-30253), PHP Code Injection☆31Updated 3 months ago
- Ad hoc collection of Red Teaming & Active Directory tooling.☆161Updated last year
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆78Updated 8 months ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆116Updated last year
- Enumerate / Dump Docker Registry☆156Updated 5 months ago
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆144Updated 6 months ago
- POC for CVE-2021-41091☆65Updated last year
- ImageMagick LFI PoC [CVE-2022-44268]☆51Updated 10 months ago
- My WriteUps for HackTheBox CTFs, Machines, and Sherlocks.☆72Updated last month
- CVE-2023-2255 Libre Office☆52Updated last year
- Root shell PoC for CVE-2021-3156☆60Updated 3 years ago
- Hack The Box CPTS, CBBH Exam and Lab Reporting / Note-Taking Tool☆115Updated 4 months ago
- GitLab User Enumeration☆20Updated last year
- Most of the notes, resources and scripts I used to prepare for the HTB CPTS and "pass it the 2 time."☆32Updated last year
- Demonized Shell is an Advanced Tool for persistence in linux.☆295Updated 3 weeks ago
- A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam☆37Updated 5 years ago
- Script to retrieve the master password of a keepass database <= 2.53.1☆90Updated 5 months ago
- JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit☆45Updated 3 months ago
- Local File Inclusion discovery and exploitation tool☆210Updated last month
- Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments☆65Updated this week
- Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)☆12Updated 3 years ago
- Joomla login bruteforce☆47Updated 2 months ago
- Interact with Hackthebox using your terminal - Be faster and more competitive !☆87Updated 4 months ago
- A wordlist repository with human-curated and reviewed content.☆81Updated 10 months ago
- Create a list of possible usernames for bruteforcing☆56Updated 7 months ago
- Reverse shell that can bypass windows defender detection☆151Updated 7 months ago
- Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)☆104Updated 8 months ago