johnk3r / nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
☆27Updated this week
Related projects ⓘ
Alternatives and complementary repositories for nuclei-templates
- ☆47Updated 5 months ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆30Updated 5 months ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆60Updated 6 months ago
- CVE-2024-28955 Exploitation PoC☆34Updated 4 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- Bypass Reset Password Code Lead to Account Takeover☆21Updated 2 months ago
- shef - extract/scrape IPs from shodan without any API key☆29Updated last week
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆27Updated 4 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆35Updated 11 months ago
- CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support☆54Updated 4 months ago
- It is a tool for scanning and exploiting the famous SQL injection vulnerability in more than millions of sites. The exploit was programme…☆71Updated 4 months ago
- Will attempt to retrieve DB details for FastAdmin instances☆61Updated 3 months ago
- ☆62Updated 3 months ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆103Updated last month
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆74Updated 5 months ago
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆19Updated 4 months ago
- ☆57Updated 3 months ago
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆61Updated 5 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆52Updated this week
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆75Updated 3 months ago
- ☆34Updated last week
- A Powerful Recon Engine☆51Updated this week
- ☆15Updated 3 months ago
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆38Updated last month
- VICIdial Unauthenticated SQLi to RCE Exploit (CVE-2024-8503 and CVE-2024-8504)☆37Updated 2 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 3 months ago