rithchard / Drupalgeddon3
Drupal < 7.58 - Drupalgeddon 3 Authenticated Remote Code Execution (Metasploit)
☆23Updated 6 years ago
Related projects: ⓘ
- Exploits a stack buffer overflow in AT-TFTP v1.9, by sending a request (get/write) for an overly long file name.☆12Updated 9 years ago
- SSH User Enumeration Script in Python Using The Timing Attack☆91Updated 8 years ago
- Password spraying script and helper for creating password lists☆33Updated 4 years ago
- ☆18Updated 7 years ago
- Detects Cisco DTP modes for VLAN Hopping (passive detection)☆73Updated 10 years ago
- Provide a shell-like interface for exploiting Remote File Inclusion vulnerabilities.☆46Updated 7 years ago
- A dockerized, improved version of the Impacket smbserver.py☆38Updated 5 years ago
- Offensive Security Certified Profesional (OSCP) course scripts, some have been generalized☆47Updated 6 years ago
- Preventing malicious takeover of the retired slurp AWS tool☆41Updated 6 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆153Updated last year
- Dirty bash script to obtain hosts given an IP address☆34Updated 3 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Some minor changes to Chimichurri to get it to compile on modern machines☆43Updated 9 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Updated last year
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- ☆20Updated 8 years ago
- Just some exploits :P☆46Updated 3 years ago
- ☆60Updated this week
- Brute-force Cisco SSL VPN☆54Updated 4 years ago
- Miscellaneous pentesting scripts for OSCP☆57Updated 5 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 4 years ago
- Advanced XPath Injection Tool☆31Updated 9 years ago
- Just a collection of pentest stuffs☆96Updated 4 years ago
- A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.☆97Updated 6 years ago
- Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.☆57Updated 6 years ago
- pentest tools☆39Updated 7 years ago
- Search drives for documents containing passwords☆61Updated 10 years ago
- Tool to identify routers on the local LAN and paths to the Internet☆59Updated 7 months ago
- Report and finding templates used by the Serpico reporting tool☆15Updated 5 years ago
- Where I'll be posting my scripts, guides, cheatsheets, and notes for for my OSCP journey.☆31Updated 6 years ago