404 Open source projects that are alternatives of or similar to Prestashop Cve 2018 19126

A container repository for my public web hacks!

A simple PHP application to learn SQL Injection detection and exploitation techniques.

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.

Cloak can backdoor any python script with some tricks.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

OWASP Joomla Vulnerability Scanner Project

Blueborne CVE-2017-0785 Android information leak vulnerability

Yet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.

linux-kernel-exploits Linux平台提权漏洞集合

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

An exploit for Apache Struts CVE-2017-5638

hack tools

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

Proofs-of-concept

PegaSwitch is an exploit toolkit for the Nintendo Switch

CVE-2018-8120 Windows LPE exploit

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

My first Android app: Launch Fusée Gelée payloads from stock Android (CVE-2018-6242)

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

Discovering vulnerabilities in firmware through concolic analysis and function clustering.

windows-kernel-exploits Windows平台提权漏洞集合

Kindle 5.6.5 exploitation tools.

🌸 Interactive shellcoding environment to easily craft shellcodes

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Making Favicon.ico based Recon Great again !

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

🕷️ A Git source leak exploit tool that restores the entire Git repository, including data from stash, for white-box auditing and analysis of developers' mind

Self contained htaccess shells and attacks

Framework to test any Anti-Cheat

Notes about attacking Jenkins servers

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

Automated Mass Exploiter

Exploiting Edge's read:// urlhandler

Multiplatform reverse shell generator

A list of all FTP servers in IPv4 that allow anonymous logins.

Hypervisor Memory Introspection Core Library

Discover duplication glitches, abusive staff giving items, x-ray or simply poor server economy.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.68

Detect deauthentication frames using an ESP8266

Fast CORS misconfiguration vulnerabilities scanner🍻

This repository contains several applications, demonstrating the Meltdown bug.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Various kernel exploits

A tool to help you write binary exploits

Bypassing disabled exec functions in PHP (c) CRLF

Using open Adb ports we can exploit a Andriod Device

A hyper plugin to provide a flexible GDB GUI with the help of GEF, pwndbg or peda

An IDA Pro plugin to examine the glibc heap, focused on exploit development

Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.

A list of resources for those interested in getting started in bug bounties

Trinity Exploit - Emulator Escape

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

C++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns