mpgn / Slanger-RCE
RCE in Slanger using deserialization of Ruby objects
☆11Updated 6 years ago
Alternatives and similar repositories for Slanger-RCE:
Users that are interested in Slanger-RCE are comparing it to the libraries listed below
- This repository contains some details about abusing outlook.☆27Updated 6 years ago
- CVE-2018-6574 POC : golang 'go get' remote command execution during source code build☆24Updated 3 years ago
- (Wordpress) Ninja Forms File Uploads Extension <= 3.0.22 – Unauthenticated Arbitrary File Upload☆17Updated 5 years ago
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 6 years ago
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆17Updated 4 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆38Updated 7 years ago
- CVE-2019-12949☆26Updated 5 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Confluence Widget Connector path traversal (CVE-2019-3396)☆22Updated 5 years ago
- Github Desktop RCE PoC☆28Updated 6 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- Pulse Secure VPN mitm Research - CVE-2020-8241, CVE-2020-8239☆23Updated 4 years ago
- ☆1Updated 6 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 5 years ago
- Exploitation Script for CVE-2020-0688 "Microsoft Exchange default MachineKeySection deserialize vulnerability"☆11Updated 5 years ago
- ☆13Updated last year
- ☆21Updated 5 years ago
- RCE in NPM VSCode Extension☆20Updated 3 years ago
- Study about HQL injection exploitation.☆51Updated 8 years ago
- PoC for CVE-2020-11651☆6Updated 4 years ago
- burp extender for fuzzing☆10Updated 6 years ago
- Security☆9Updated 4 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- Python implementation of RSA reverse shell.☆11Updated 8 years ago
- ☆34Updated 5 years ago
- Burp extension for automated handling of CSRF tokens☆16Updated 7 years ago
- XSS payloads for edge cases☆34Updated 6 years ago
- Abusing SketchUp to make persistence on Windows☆21Updated 6 years ago
- CVE-2017-10366: Oracle PeopleSoft 8.54, 8.55, 8.56 Java deserialization exploit☆25Updated 6 years ago
- CVE-2020-10199 CVE-2020-10204 Python POC☆19Updated 4 years ago