GitHub - moniik/poc_salesforce_lightning: Academic purposes only. Attack against Salesforce lightning with guest privilege.
$ python3 exploit.py -h usage: exploit.py [-h] -u URL [-o [OBJECTS [OBJECTS ...]]] [-l] [-c] [-a AURA_CONTEXT] [-r RECORD_ID] [-d] [-f] [-s] Exploit Salesforce through the aura endpoint with the guest privilege optional arguments: -h, --help show this help message and exit -u URL, --url URL set the SITE url. e.g. http://url/site_path -o [OBJECTS [OBJECTS ...]], --objects [OBJECTS [OBJECTS ...]] se
GitHub - GhostTroops/scan4all: Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Free one id Multi-target web netcat for reverse shell What is scan4all: integrated vscan, nuclei, ksubdomain, subfinder, etc., fully automated and intelligent。red team tools Code-level optimization, parameter optimization, and individual modules, such as vscan filefuzz, have been rewritten for these integrated projects. In principle, do not repeat the wheel, unless there are bugs, problems Cross-p
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
GitHub - adysec/nuclei_poc: Nuclei POC,每2小时更新 | 自动整合全网Nuclei的漏洞POC,实时同步更新最新POC,保存已被删除的POC。通过批量克隆Github项目,获取Nuclei POC,并将POC按类别分类存放,使用Github Action实现。已有41w+POC,其中3.5w+高质量POC
GitHub - zan8in/afrog: A Security Tool for Bug Bounty, Pentest and Red Teaming.
GitHub - projectdiscovery/cvemap: Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.
GitHub - EdgeSync/Struts_Version_Scanner: Proof of concept - How to verify what version of struts your server is running.
GitHub - KamilDogo/IPv4Scanner-POC: Pv4Scanner-POC is a program that performs a port scan of the entered IP address and automatically downloads a PoC code associated with the vulnerability if a CVE vulnerability exists.
GitHub - al0ne/Vxscan: python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
GitHub - W01fh4cker/cve-2022-33891: cve-2022-33891-poc
GitHub - trickest/find-gh-poc: Find CVE PoCs on GitHub
GitHub - wdahlenburg/CVESearch: Query various sources for CVE proof-of-concepts
GitHub - RoseSecurity/DNS-Fender: A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DN
GitHub - thehackingsage/bughunter: Tools for BugHunting
pocsuite3/20210923_WEB_Vmware_vCenter_Server_FIleUpload_CVE-2021-20050.py at master · knownsec/pocsuite3 · GitHub
GitHub - ktecv2000/ProxyShell: ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)