scan4log4j
Python script that sends CVE-2021-44228 log4j payload requests to url list
[VERY BETA]
using
- Supply your url list to urls.txt
- Put your payload(s) in payloads.txt
- (Optional) add more headers in headers.txt
- Run
./scan4log4j.py
Python script that sends CVE-2021-44228 log4j payload requests to url list
[VERY BETA]
./scan4log4j.py
This repository detects a system vulnerable to CVE-2022-21907 and protects against this vulnerability if desired
Vuln Impact An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files tha
dns-mf-hazard Tool to check if your DNS comply to Polish Ministry of Finance gambling domains restrictions How to use it? Installation You need python
Msf-Tool 1.0 Termux apt install git -y apt install python apt install python3 apt install python3-pip apt install metasploit ---- ---- git clone ht
1.Create a Sample Vulnerable Application . 2.Start a netcat listner . 3.Run the exploit . 5.Use jdk1.8.0_20 for better results . Exploit-db - https://
DomainMonitor is a web project that has a RESTful API to get a domain's subdomains and whois data.
Take Note! With the exception of issues and PRs regarding changes to hosts/data/StevenBlack/hosts, all other issues regarding the content of the produ
Revealin Uncover the full name of a target on Linkedin. It's just a little PoC exploiting a design flaw. Useful for OSINT. Screenshot Usage $ git clon
adb - An exploitation tool for android devices. A tool that allows you to search for vulnerable android devices across the world and exploit them. Fea
CVE-2022-22963 CVE-2022-22963 PoC Slight modified for English translation and detection of https://github.com/chaosec2021/Spring-cloud-function-SpEL-R
Common Security Pipeline Описание проекта: Данный проект является вариантом реализации DevSecOps практик, на базе: GitLab DefectDojo OpenSouce tools g
naabu2nmap 对naabu的端口扫描结果,调用nmap进行指纹识别
MainCoon is an automated recon framework meant for gathering information during penetration testing of web applications.
bootleg-productions consider this account to be a journal for me to record my progress throughout my python journey feel free to copy codes from this
💣 Bomb Crypto Bot 💣 ⚠️ Warning I am not responsible for any penalties incurred by those who use the bot, use it at your own risk. 📄 Documentation -
jndiRep - CVE-2021-44228 Basically a bad grep on even worse drugs. search for malicious strings decode payloads print results to stdout or file report
ort scanner tool with easy installation! Python programming language is used and The text in the program is Georgian 3
client attack remotely , this script was written for educational purposes only, do not use against to any victim, which you do not have permission for it
rpckiller This script checks for any possible SSRF dns/http interactions in xmlrpc.php pingback feature and with that you can further try to escalate
CVE-2022-22965 - vulnerable app and PoC Trial & error $ docker rm -f rce; docker build -t rce:latest . && docker run -d -p 8080:8080 --name rce rce:la