Simple python script to extract unsafe functions from php projects
☆197Mar 22, 2018Updated 8 years ago
Alternatives and similar repositories for RCEScanner
Users that are interested in RCEScanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Takes raw hex shellcode (e.g. msfvenom hex format) from a cmd line arg, text file, or URL download and runs it.☆20Dec 17, 2018Updated 7 years ago
- Helper scripts to assist penetration testing and exploit development☆36Dec 11, 2024Updated last year
- A simple C implementation to decoded your shellcode and writes it directly to memory☆98Jul 10, 2020Updated 5 years ago
- ☆22Oct 22, 2019Updated 6 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A Cross Site Scripting scanner using selenium webdriver☆55Nov 1, 2019Updated 6 years ago
- Local File Inclusion (LFI) in FHEM 6.0 allows an attacker to include a file, it can lead to sensitive information disclosure.☆12Jan 20, 2021Updated 5 years ago
- ☆85Dec 6, 2019Updated 6 years ago
- ☆111Dec 26, 2019Updated 6 years ago
- Open source pre-operation C2 server based on python and powershell☆764Jul 6, 2021Updated 4 years ago
- Pulse Secure SSL VPN pre-auth file reading☆50Aug 26, 2019Updated 6 years ago
- Shellcode wrapper with encryption for multiple target languages☆441Jan 23, 2017Updated 9 years ago
- CVE-2018-13379☆253Aug 14, 2019Updated 6 years ago
- ☆63Sep 10, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Credentials gathering tool automating remote procdump and parse of lsass process.☆783Jun 20, 2020Updated 6 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆661Feb 21, 2024Updated 2 years ago
- SQL Server Reporting Services(CVE-2020-0618)中的RCE☆195Feb 15, 2020Updated 6 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆619Mar 4, 2021Updated 5 years ago
- django 漏洞:CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC☆104Feb 13, 2020Updated 6 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,177May 26, 2023Updated 3 years ago
- A highly configurable Framework for easy automated web scanning☆383Jul 13, 2020Updated 5 years ago
- My attempt at writing exploit POCs for various CVEs☆15Feb 8, 2020Updated 6 years ago
- Apache Solr DataImport Handler RCE☆90Aug 12, 2019Updated 6 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Apache Tomcat + MongoDB Remote Code Execution☆114Jan 15, 2021Updated 5 years ago
- Suite of Shellcode Running Utilities☆113Jan 30, 2020Updated 6 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆361Mar 6, 2025Updated last year
- PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)☆225Sep 29, 2020Updated 5 years ago
- CVE-2020-11890: Improper input validations in the usergroup table class could lead to a broken ACL configuration to RCE☆63Jun 1, 2023Updated 3 years ago
- Security Advisories☆11Sep 22, 2019Updated 6 years ago
- Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI☆238Jun 9, 2023Updated 3 years ago
- Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322☆349Nov 14, 2019Updated 6 years ago
- ☆50Sep 11, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs☆10Nov 29, 2020Updated 5 years ago
- CVE-2019-0604☆132Mar 22, 2019Updated 7 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆301Apr 9, 2026Updated 2 months ago
- CVE-2019-0708 (BlueKeep)☆110Jul 7, 2020Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,645Jul 10, 2023Updated 2 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆135Jan 15, 2020Updated 6 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)☆100Dec 24, 2019Updated 6 years ago