Exploit grafana Pre-Auth LFI
python3 grafana-exploit.py http://site.com /etc/passwd
Or
python3 grafana-exploit.py http://site.com:8080 /etc/passwd
Interesting files
/etc/passwd
/etc/hosts
/var/lib/grafana/grafana.db
Helikopter Python Toolkit containing different Cyber Attacks Tools. Tools in Helikopter Toolkit 1. FattyNigger (PYTHON WORM) 2. Taxes (PYTHON PASS EXT
$ FIVE - FIVE is a Pentesting Framework to Test the Security & Integrity of a Website, or Multiple Websites. $ Info FIVE Was Made After Vulnnr to Prod
vulnz Tool for finding php source code vulnerabilities. Scans PHP source code and prints out potentially dangerous lines. This tool is useful for secu
log4j-tools Quick links Click to find: Inclusions of log4j2 in compiled code Calls to log4j2 in compiled code Calls to log4j2 in source code Overview
Hrafna - Log4j-Scanner for the masses Features Scanning-system designed to check your own infra for vulnerable log4j-installations start and stop scan
DISCLAIMER 💣 Ushbu skriptdagi materiallar bilan bog'liq har qanday xatti-harakatlar faqat sizning javobgarligingizdir. Ushbu skriptdagi ma'lumotlarda
APKLeaks - Scanning APK file for URIs, endpoints & secrets.
OMIGOD Proof on Concept Exploit for CVE-2021-38647 (OMIGOD) For background information and context, read the our blog post detailing this vulnerabilit
scad-build This is a multi-STL OpenSCAD build system based around GNU make. It supports dynamic build targets, intelligent previews with user-defined
ProxyLogon For Python3 ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF-GetWebShell) usage: python ProxyLogon.py --host=exchang
STATS305C: Applied Statistics III Instructor: Scott Linderman TA: Matt MacKay, James Yang Term: Spring 2022 Stanford University Course Description: Pr
Sunflower_get_Password 一款针对向日葵的识别码和验证码提取工具 👮🏻♀️ 免责声明 由于传播、利用Sunflower_get_Password工具提供的功能而造成的任何直接或者间接的后果及损失,均由使用者本人负责,本人不为此承担任何责任。 安装环境 本工具使用Python
Log4jUnifi Exploiting CVE-2021-44228 in Unifi Network Application for remote cod
CVE-2022-22965 Spring Framework/CVE-2022-22965 Vulnerability ID: CVE-2022-22965/CNVD-2022-23942/QVD-2022-1691 Reproduce the vulnerability docker pull
Lnkbomb Lnkbomb is used for uploading malicious shortcut files to insecure file
This is an injection tool that can inject any xposed modules apk into the debug android app, the native code in the xposed module can also be injected.
Python program that generates secure passwords. The user has the option to select the length of the password, amount of passwords,
A simple python script to dump remote files through a local file read or local file inclusion web vulnerability. Features Dump a single file w
subDomainsBrute 1.4 A fast sub domain brute tool for pentesters. It works with P
🐞 Log4Scan 🔧 Log4Shell 简单的主动和被动扫描脚本 Log4scan 针对header头和fuzz参数的主动批量扫描,用于大批量黑盒检测
22 Dec 04, 2022
24 Dec 10, 2021
1 Jan 14, 2022
171 Dec 25, 2022
18 Jan 23, 2022
1 Feb 12, 2022
3.5k Jan 09, 2023
231 Nov 12, 2022
1 Dec 21, 2021
112 Dec 01, 2022
14 Aug 11, 2022
635 Dec 20, 2022
96 Jan 02, 2023
4 Apr 05, 2022
216 Jan 08, 2023
32 Nov 05, 2022
4 Dec 07, 2021
48 Dec 03, 2022
2 Oct 18, 2022
6 Aug 04, 2022