vin01 / poc-cve-2024-38396
PoC for iTerm2 CVEs CVE-2024-38396 and CVE-2024-38395 which allow code execution
☆19Updated 8 months ago
Alternatives and similar repositories for poc-cve-2024-38396:
Users that are interested in poc-cve-2024-38396 are comparing it to the libraries listed below
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated 2 years ago
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Updated last year
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆18Updated 2 years ago
- static sites for blog.orange.tw☆21Updated last week
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 2 years ago
- Copy as XMLHttpRequest BurpSuite extension☆30Updated 3 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- ☆15Updated 3 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆14Updated 2 years ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- [Confluence] CVE-2023-22527 realworld poc☆18Updated last year
- ☆21Updated 7 years ago
- CTF challenges WriteUp☆14Updated 2 years ago
- 2022 CTF public release☆24Updated 2 years ago
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆47Updated 8 months ago
- Burp Suite Extension - Trigger actions and reshape HTTP request and response traffic using configurable rules☆15Updated 2 months ago
- Query various sources for CVE proof-of-concepts☆49Updated last year
- A collection of Burp Suite Lambda Filters ~ Bambdas☆25Updated 4 months ago
- A modified version of TomNomNom's anew, allowing for multiple files to be defined as parameters.☆13Updated last year
- Finds Domain Controller on a network, enumerates users, AS-REP Roasting and hash cracking, bruteforces password, dumps AD users, DRSUAPI,…☆18Updated last year
- H&E- Burp Highlighter and Extractor☆18Updated last year
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆19Updated 4 months ago
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissions☆25Updated 5 months ago
- Advanced test for proxy & waf☆13Updated 5 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 7 months ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆25Updated 7 months ago
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆32Updated 8 months ago
- Reversing Citrix Gateway for XSS☆16Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 5 months ago
- Noob Penetration tester☆11Updated 9 months ago