tree-chtsec / oswe-toolsLinks
☆38Updated 2 years ago
Alternatives and similar repositories for oswe-tools
Users that are interested in oswe-tools are comparing it to the libraries listed below
Sorting:
- A flexible Boolean Based SQL injection tool☆20Updated 2 years ago
- Old version of mimikatz for OSCP labs☆17Updated 5 years ago
- CVE-2023-33733 reportlab RCE☆120Updated last year
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆127Updated 2 years ago
- MS17-010_CVE-2017-0143☆37Updated 2 months ago
- ☆35Updated 3 years ago
- POC for CVE-2020-13151☆34Updated 5 years ago
- Send controlled amount of bytes, send msf-pattern, calculate offset, custom buffer, badcharacters all in one.☆16Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆128Updated last year
- Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)☆119Updated last year
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆115Updated 6 months ago
- Apache Spark Shell Command Injection Vulnerability☆88Updated 2 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆111Updated last year
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆134Updated 5 years ago
- Fake MySQL Server that attempts to steal files from clients.☆21Updated 5 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆69Updated 2 years ago
- ☆80Updated last year
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207☆116Updated 2 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆42Updated 3 years ago
- This is to reorganize my notes☆10Updated 4 years ago
- Becoming the spider, crawling through the webs to catch the fly.☆76Updated 4 years ago
- Unauthenticated Sqlinjection that leads to dump data base but this one impersonated Admin and drops a interactive shell☆22Updated 3 years ago
- TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection☆39Updated 2 years ago
- jolokia-exploitation-toolkit☆299Updated 8 months ago
- ☆33Updated 2 years ago
- A webshell application and interactive shell for pentesting Apache Tomcat servers.☆117Updated 6 months ago
- Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpick…☆118Updated last year
- Zimbra <9.0.0.p27 RCE☆104Updated 2 years ago