The vulnerability is tracked under the CVE identifier CVE-2023-51385 (CVSS score: 9.8). It impacts all versions of OpenSSH before 9.6p1

WinPwn is an powershell script that help you to Automation for internal Windows Penetration testing. Only use for educational purposes.

pwncat is a post-exploitation platform for Linux targets. It started out as a wrapper around basic bind and reverse shells and has grown from there.

Not Your Average Web Crawler is a Python library that enables you to test your payload against all requests of a certain domain.

Evil Clippy is a cross-platform assistant for creating malicious MS Office documents. This tool was released during our BlackHat Asia talk (March 28, 2019)

Managing network traffic is one of the toughest tasks that system administrators must handle. We must specify that users connected to the system meet the firewall’s incoming and outgoing requirements...

Autopsy is a graphical interface to The Sleuth Kit and other open source digital forensics tools. Although Autopsy is designed to be cross-platform (Windows, Linux, MacOSX), the current version is...

s3-inspector is a tool to check AWS S3 bucket permissions. Compatible with Linux, MacOS and Windows, python 2.7 and 3. May be used as AWS Lambda function.

three security vulnerabilities have been identified in its systems, two of which are of critical (CVE-2024-22860 and CVE-2024-22862) severity

Amass is the subdomain enumeration tool with the greatest number of disparate data sources that performs analysis of the resolved names in order to deliver the largest number of quality results.

shodan-python provides developers easy access to all of the data stored in Shodan in order to automate tasks & integrate into existing tools

CVE-2023-34152 is an ominous manifestation of remote code execution (RCE) vulnerability in OpenBlob when configured with --enable-pipes

ssh-mitm allows an auditor to intercept SSH connections. A patch applied to the OpenSSH v7.5p1 source code causes it to act as a proxy between the victim and a legitimate SSH server; all plaintext...

Google Hacking the meaning of the original use of Google Google search engine to search for information technology and behavior, now refers to the use of various search engines to search for inform...

Evil-WinRM shell is the ultimate Windows Remote Management shell for hacking/pentesting. WinRM is the Microsoft implementation of the WS-Management Protocol

Details and proof-of-concept (PoC) exploit code have emerged about a now-patched security flaw, CVE-2024-20656, in Microsoft Visual Studio

CRLF.py CRLF – Auto CRLF Injector Author: Rudra Sarkar Disclaimer: I am not responsible for any damage done using this tool. This tool should only be used for educational purposes and for penetration...

Spraykatz is a tool without any pretention able to retrieve credentials on Windows machines and large Active Directory environments.

SMTPTester is a python3 tool to test SMTP server for 3 common vulnerabilities: Spoofing, Relay and user enumeration.

Skydive agents collect topology informations and flows and forward them to a central agent for further analysis.

sql injection,user agent sql injection,sql injection user agent,blind sql injection, time delay sql injection, sql injection tutorial

This method is inspired by Threadless Injection as RemoteTLSCallbackInjection does not invoke any API calls to trigger the injected payload.

Sherlock Find usernames across social networks List Of Supported Sites (299 Sites In Total!) 2Dimensions 3dnews 4pda 500px 7Cups About.me Academia.edu Alik.cz AllTrails Anobii Aptoide Archive.org...

CVE-2024-21892 has been identified in how Node.js applications running on Linux handle environment variables under elevated privileges

On August 22, 2019, the Trend Micro research team released the Squid Proxy Server Buffer Overflow Vulnerability Analysis Report numbered CVE-2019-12527. Attackers can construct packets without...

Some usefull sqlmap command for testing SQL injection vulnerability. 1.Analyzing the current user is dba python sqlmap.py -u “url” –is-dba -v 1 2) — users: user list database management system python...

inspired by classic and modern tools and techniques, InflativeLoading is a tool that can dynamically convert a native EXE to a PIC shellcode

Avred is being used to identify which parts of a file are identified by an Antivirus and tries to show as much possible information and context about each match.

SecretScanner helps users scan their container images or local directories on hosts and outputs a JSON file with details of all the secrets found

Bytecode Viewer is an Advanced Lightweight Java Bytecode Viewer, GUI Java Decompiler, GUI Bytecode Editor, GUI Smali, GUI Baksmali, GUI APK Editor, GUI Dex Editor, GUI APK Decompiler, GUI DEX...

LinEnum – Scripted Local Linux Enumeration & Privilege Escalation Checks For more information visit www.rebootuser.com Note: Export functionality is currently in the experimental stage. High-level...

Remote code execution via PHP,PHP Exploitation Code,PHP Object Injection,Command Execution,Information Disclosure,php code audit

Lighthouse leverages IDA as a platform to map, explore, and visualize externally collected code coverage data when symbols or source may not be available

CVE-2024-23108 and CVE-2024-23109 could potentially allow remote, unauthenticated attackers to execute unauthorized commands

A security researcher has published details and proof-of-concept (PoC) code for a macOS vulnerability (CVE-2023-42942)

CVE-2023-7028 (rated CVSS 10.0) has been discovered by researchers in over 5,300 instances of GitLab accessible from the internet.

LOLBITS is a C# reverse shell that uses Microsoft's Background Intelligent Transfer Service (BITS) to communicate with the Command and Control backend.

LOLSpoof is an interactive shell program that automatically spoofs the command line arguments of the spawned process.

It allows post-exploitation tasks on UNIX computers joined to Active Directory, using various methods for credential mining.

nmap-vulners is an Nmap NSE script using some well-known service to provide info on vulnerabilities. The only thing you should always keep in mind is that the script depends on having software...

Detect It Easy, or abbreviated "DIE" is a program for determining types of files. "DIE" is a cross-platform application.

Tor is a connection-based low-latency anonymous communication system. Clients choose a source-routed path through a set of relays and negotiate a “virtual circuit” through the network, in which each...

Setting TX POWER iw reg set BO iwconfig wlan1 txpower 25 Cracking WPA airmon-ng start wlan0 airodump-ng -c (channel) –bssid (AP MAC) -w (filename) wlan0mon aireplay-ng -0 1 -a (AP MAC) -c (VIC...

Chisel is a fast TCP tunnel, transported over HTTP, secured via SSH. Single executable including both client and server.

CVE-2023-35636 is a security vulnerability found in Microsoft Outlook, specifically in the calendar sharing function.

FOCA (Fingerprinting Organizations with Collected Archives) is a tool used mainly to find metadata and hidden information in the documents its scans.

Advanced Tool for persistence in Linux. Features: Auto Generate SSH keypair for all users, Crontab Persistence, and more...

NGINX has released an urgent patch to address 2 flaws (CVE-2024-24989, CVE-2024-24990) lurking within its experimental HTTP/3 implementation

Zircolite is a standalone tool written in Python 3. It allows to use SIGMA rules on MS Windows EVTX (EVTX and JSON format)

Add headers to all Burp requests to bypass some WAF products. This extension will automatically add the following headers to all requests. Features Users can modify the X-Originating-IP, X-Forwarde...

vscan puts an additional value into vulnerability scanning with nmap. It uses NSE scripts which can add flexibility in terms of vulnerability detection and exploitation.

A researcher has published a proof-of-concept (PoC) tool for a kernel vulnerability, CVE-2024-23208 remedied in iOS 17.3

kernelpop is a framework for performing automated kernel vulnerability enumeration and exploitation on the following operating systems: Linux and Mac

Sn1per is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities.

Panoptic is an open source penetration testing tool that automates the process of search and retrieval of content for common log and config files through path traversal vulnerability.

Johnny is the cross-platform Open Source GUI frontend for the popular password cracker John the Ripper. It was originally proposed and designed by Shinnok in draft, version 1.0 implementation was...

bulk injection testing with BurpSuite and SQLmap,BurpSuite SQLmap,burp suite sqlmap plugin,sqlmap plugin for burpsuite,sqlmap burp extension

bulk injection testing with BurpSuite and SQLmap,BurpSuite SQLmap,burp suite sqlmap plugin,sqlmap plugin for burpsuite,sqlmap burp extension

vscan puts an additional value into vulnerability scanning with nmap. It uses NSE scripts which can add flexibility in terms of vulnerability detection and exploitation.

Gitleaks will clone the target and run a regex check against all diffs of all commits on all remotes in topological order.