pimps / ysoserial-modified

Related projects: ⓘ

• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆342Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆277Updated 2 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆112Updated 9 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆203Updated 3 years ago
• attackdebris / kerberos_enum_userlists
  Collection of username lists for enumerating kerberos domain users
  ☆79Updated 6 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆276Updated 5 months ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆247Updated 2 years ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆382Updated 5 months ago
• dheiland-r7 / snmp
  SNMP data gather scripts
  ☆77Updated 7 months ago
• sosdave / KeyTabExtract
  Extracts Key Values from .keytab files
  ☆205Updated 4 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆286Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆98Updated 4 months ago
• alt3kx / CVE-2021-21985_PoC
  ☆214Updated last year
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆116Updated 4 years ago
• xpn / Powershell-PostExploitation
  Scripts created to help with post exploitation of a Windows host
  ☆95Updated 3 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆110Updated 4 years ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆215Updated 3 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆197Updated 2 months ago
• convisolabs / CVE-2021-22204-exiftool
  Python exploit for the CVE-2021-22204 vulnerability in Exiftool
  ☆88Updated 3 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆69Updated 3 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆115Updated last year
• whotwagner / logrotten
  ☆127Updated last year
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆171Updated 4 years ago
• hausec / ProxyLogon
  ☆289Updated 2 months ago
• dotPY-hax / gitlab_RCE
  RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
  ☆157Updated 3 years ago
• capt-meelo / MassMap
  Combined port scanning w/ Masscan's speed & Nmap's scanning features.
  ☆148Updated 2 years ago
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆176Updated 5 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆502Updated 7 months ago
• pentestmonkey / smtp-user-enum
  Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO.
  ☆97Updated 2 years ago
• jas502n / CVE-2019-1388
  CVE-2019-1388 UAC提权 (nt authority\system)
  ☆185Updated 4 years ago