rbowes-r7 / refreshing-soap-exploitLinks
A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root
☆21Updated 2 years ago
Alternatives and similar repositories for refreshing-soap-exploit
Users that are interested in refreshing-soap-exploit are comparing it to the libraries listed below
Sorting:
- Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"☆16Updated last year
- ☆21Updated 3 weeks ago
- 2022 CTF public release☆23Updated 3 years ago
- A curated list of argument injection vectors☆41Updated 8 months ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated last year
- Reverse_Shell Implemented in C++ with the ability to bypass sandboxes☆12Updated 4 years ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 3 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 3 years ago
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆33Updated last year
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- Presentaciones de congresos☆53Updated last year
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Updated 3 years ago
- ☆59Updated last year
- Left To My Own Devices - NT hash tools☆40Updated 3 years ago
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆23Updated 2 years ago
- Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…☆21Updated last month
- Remote code execution in Power Platform connectors via JSON deserialization☆23Updated 2 years ago
- ☆27Updated 2 years ago
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated 2 years ago
- This is a proof-of-concept of malicious software running inside of ModSecurity WAF.☆34Updated 2 months ago
- Study notes on Windows NTLM Reflection and token stealing based EOPs.☆18Updated 4 years ago
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- IoT Malware Similarity Analysis Platform☆44Updated 3 years ago
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆50Updated last year
- OSED Practice binary