CVE-2021-41773
Fast python tool to test apache path traversal CVE-2021-41773 in a List of url
Usage :-
create a live urls file and use the flag "-l"
python3 apache_path_traversal.py -l urls-list.txt
Fast python tool to test apache path traversal CVE-2021-41773 in a List of url
Overview
Owner
Zahir Tariq
Applications Security analyst | bugs Hunter | python networking & scrapping lover
This repo created for bypassing Widevine L3 DRM and obtaining keys.
First run: Copy headers (with cookies) of POST license request from browser to headers.py like dictionary. pip install -r requirements.txt # if doesn'
263 Jan 07, 2023
Binary check tool to identify command injection and format string vulnerabilities in blackbox binaries
Binary check tool to identify command injection and format string vulnerabilities in blackbox binaries. Using xrefs to commonly injected and format string'd files, it will scan binaries faster than F
3 Nov 16, 2021
Brute-Force-Connected
Brute-Force-Connected Guess the password for Connected accounts the use : Create a new file and put usernames and passwords in it Example : joker:1234
4 Jun 05, 2022
Log4j2 intranet scan
Log4j2-intranet-scan ⚠️ 免责声明 本项目仅面向合法授权的企业安全建设行为,在使用本项目进行检测时,您应确保该行为符合当地的法律法规,并且已经取得了足够的授权 如您在使用本项目的过程中存在任何非法行为,您需自行承担相应后果,我们将不承担任何法律及连带责任 在使用本项目前,请您务
16 Dec 19, 2022
WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar
CVE-2020-14756 WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar README project base on https://github.com/Y4er/CVE-2020-2555 and weblo
77 Dec 06, 2022
Advanced subdomain scanner, any domain hidden subdomains
little advanced subdomain scanner made in python, works very quick and has options to change the port u want it to connect for
5 Nov 23, 2021
A deobfuscator for multiple python obfuscators
PY4COC A deobfuscator for multiple python obfuscators, supports exe's packed with pyinstaller too. How to use python3 py4coc.py exe file or py file o
16 Dec 03, 2022
Generate MIPS reverse shell shellcodes easily !
MIPS-Reverse MIPS-Reverse is a tool that can generate shellcodes for the MIPS architecture that launches a reverse shell where you can specify the IP
29 Jul 27, 2021
ssh-audit is a tool for ssh server & client configuration auditing.
SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
1.4k Dec 31, 2022
Python tool for dumping flash via uboot reliably
Reliable Uboot Flash Dumper is a Python tool for dumping flash via uboot reliably. If you've ever had to dump flash via uboot and a serial connection and became frustrated about doing it several time
25 May 10, 2022
Now patched 0day for force reseting an accounts password
Animal Jam 0day No-Auth Force Password Reset via API Now patched 0day for force reseting an accounts password Used until patched to cause anarchy. Pro
10 Nov 17, 2022
Shell hunter for AF
AF-ShellHunter AF-ShellHunter: Auto shell lookup AF-ShellHunter its a script designed to automate the search of WebShell's in AF Team How to pip3 ins
34 May 13, 2022
Python program that generates secure passwords.
Python program that generates secure passwords. The user has the option to select the length of the password, amount of passwords,
4 Dec 07, 2021
Use scrapli to retrieve security zone information from a Juniper SRX firewall
Get Security Zones with Scrapli Overview This example will show how to retrieve security zone information on Juniper's SRX firewalls. In addition to t
2 Jun 19, 2022
EyeJo是一款自动化资产风险评估平台,可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查,快速发现存在的薄弱点和攻击面。
EyeJo EyeJo是一款自动化资产风险评估平台,可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查,快速发现存在的薄弱点和攻击面。 免责声明 本平台集成了大量的互联网公开工具,主要是方便安全人员整理、排查资产、安全测试等,切勿用于非法用途。使用者存在危害网络安全等任何非法行为,后果自负,作
429 Dec 31, 2022
Omega - From Wordpress admin to pty
The Linux tool to automate the process of getting a pty once you got admin credentials in a Wordpress site. Keep in mind that right now Omega only can attack Linux hosts.
12 Nov 09, 2022
Writing and posting code throughout my new journey into python!
bootleg-productions consider this account to be a journal for me to record my progress throughout my python journey feel free to copy codes from this
1 Dec 30, 2021
Web Headers Security Scanner
Web Headers Security Scanner
3 Dec 16, 2022
MongoDB-Injection - This challenge-script is custom-made for web-server running MongoDB which is vulnerable to No-SQL injection
MongoDB-Injection Cheesy Multi-threaded script for NoSQL Injection This challeng
2 Jun 06, 2022
GDID (Google Dorks for Information Disclosure)
GDID (Google Dorks for Information Disclosure) Script made for your recon automation in Bug Bounty or Pentest. It will help you to find Information Di
5 Mar 10, 2022