Directory Traversal in Afterlogic webmail aurora and pro .
Description: AfterLogic Aurora and WebMail Pro products with 7.7.9 and all lower versions are affected by this vulnerability, simply sending an HTTP GET request to WebDAV EndPoint with built-in “[email protected]” and it’s the predefined password “caldav_public_user” allows the attacker to read all files under the web root.
python3 CVE-2021-26294.py http(s)://target:port
Please star this project! Written in Python Report Bug . Request Feature DISCLAIMER This project is in its early days, everything you see here is almo
SpaceSiren SpaceSiren is a honey token manager and alert system for AWS. With this fully serverless application, you can create and manage honey token
A tool to find good RCE From my series: A powerful Burp extension to make bounties rain
CVE-2021-42574 - Code generator Generate malicious files using recently published bidi-attack vulnerability, which was discovered in Unicode Specifica
Encrypted messaging application with the use of MIFARE DESfire chip to store the private/public keys needed for the application authentication
HashDB IDA Plugin Malware string hash lookup plugin for IDA Pro. This plugin connects to the OALABS HashDB Lookup Service. Adding New Hash Algorithms
Python tool for enumerating directories and for fuzzing
CVE-2021-31166: HTTP Protocol Stack Remote Code Execution Vulnerability This is a proof of concept for CVE-2021-31166 ("HTTP Protocol Stack Remote Cod
Flask-SeaSurf SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF). CSRF vulnerabilities have been found in large and popular
Interactsh An OOB interaction gathering server and client library Features • Usage • Interactsh Client • Interactsh Server • Interactsh Integration •
DOME - A subdomain enumeration tool Check the Spanish Version Dome is a fast and reliable python script that makes active and/or passive scan to obtai
This project is for finding a solution to use Security Onion Elastic data with Jupyter Notebooks. The goal is to successfully use this notebook project below with Security Onion for beacon detection
E-Crack By Aang-XD Fitur Login • Login via token facebook • Login via cookie facebook Install On Termux $ pkg update && pkg upgrade $ pkg install pyth
FBGen is simple facebook user based wordlist generator using Username/ID and cookie.
Generates permutations of Months, Seasons, Years, Sports Teams (NFL, NBA, MLB, NHL), Sports Scores, "Password", and even Iterable Keyspaces of a specified size.
Animal Jam 0day No-Auth Force Password Reset via API Now patched 0day for force reseting an accounts password Used until patched to cause anarchy. Pro
ProxyShell Install git clone https://github.com/ktecv2000/ProxyShell cd ProxyShell virtualenv -p $(which python3) venv source venv/bin/activate pip3 i
Easy to setup customizable honeypots for monitoring network traffic, bots activities and username\password credentials. The current available honeypot
zip-symlink-payload-creator This is a simple tool to create ZIP payloads using a provided wordlist for the symlink attack (present in some file upload
Files related to PoC||GTFO 21:21 - NSA’s Backdoor of the PX1000-Cr 64bit2key.py
3 Dec 20, 2022
287 Nov 09, 2022
52 Dec 16, 2022
7 Nov 09, 2022
4 Nov 06, 2021
237 Dec 21, 2022
5 Feb 21, 2022
820 Dec 18, 2022
183 Dec 28, 2022
2.1k Jan 08, 2023
329 Jan 01, 2023
4 Jun 08, 2022
2 Dec 24, 2021
2 Jul 20, 2022
65 Dec 22, 2022
10 Nov 17, 2022
312 Dec 09, 2022
259 Dec 31, 2022
6 Aug 18, 2022
15 Nov 26, 2022