s0md3v / nano
Nano is a family of PHP web shells which are code golfed for stealth.
☆434Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for nano
- Bypassing disabled exec functions in PHP (c) CRLF☆400Updated 4 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆514Updated 4 years ago
- Exploitation for XSS☆702Updated 3 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆465Updated 4 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆346Updated 6 years ago
- Free web-application vulnerability and version scanner☆560Updated 2 months ago
- JShell - Get a JavaScript shell with XSS.☆509Updated 5 years ago
- Multi Tool Subdomain Enumeration☆721Updated 3 years ago
- Exploit written in Python for CVE-2018-15473 with threading and export formats☆521Updated 3 months ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆423Updated 4 years ago
- Some of my exploits.☆572Updated 3 years ago
- A friend of SQLmap which will do what you always expected from SQLmap.☆428Updated 5 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆530Updated 2 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆829Updated 5 months ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆394Updated 4 years ago
- Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution☆390Updated 7 years ago
- Python 3.5+ DNS asynchronous brute force utility☆644Updated last year
- Spawn to shell without any credentials by using CVE-2018-10933 (LibSSH)☆496Updated 10 months ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Updated 5 years ago
- An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.☆269Updated 3 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,198Updated 10 months ago
- A tool to find and exploit servers vulnerable to Shellshock☆333Updated last year
- DNS Rebinding Exploitation Framework☆481Updated 3 years ago
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆329Updated 3 years ago
- ☆208Updated 3 years ago
- CMS auto detect and exploit.☆362Updated 2 years ago