xtenex Goto Github PK

cve-2022-40685

PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)

cve-2022-41040-metasploit-proxynotshell

the metasploit script(POC) about CVE-2022-41040. Microsoft Exchange are vulnerable to a server-side request forgery (SSRF) attack. An authenticated attacker can use the vulnerability to elevate privileges.

cve-2022-41852_jxpath

CVE-2022-41852 Proof of Concept (unofficial)

cve-2022-42889

cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text version 1.10.

cve_server

Simple REST-style web service for the CVE searching

cybrary

Cybrary Python Excercices

daloradius

daloRADIUS is an advanced RADIUS web management application aimed at managing hotspots and general-purpose ISP deployments. It features user management, graphical reporting, accounting, a billing engine and integrates with GoogleMaps for geo-locating.

dcompotato

Some Service DCOM Object and SeImpersonatePrivilege abuse.

debian-gnu-linux-profiles

Debian GNU/Linux based Services Profiles

decaf

DECAF(short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.

deep-learning-bitcoin

Exploiting Bitcoin prices patterns with Deep Learning.

deep-learning-tinder

Simple Tinder algorithm able to swipe left and right based on the recommendations of a pre-trained deep neural network (Machine Learning).

deepdarkcti

Collection of Cyber Threat Intelligence sources from the deep and dark web

deepdive

Source Code for "Deep Dive: The Development of an Exploit" (ISBN: 978-3738620092)

defender_exclusions-bof

A BOF to determine Windows Defender exclusions.

dejitleak

DeJITLeak: Eliminating JIT-Induced Timing Side-Channel Leaks

depix

Recovers passwords from pixelized screenshots

descry

This program is an non-object oriented opensource, hidden and undetectable backdoor/reverse shell/RAT for Windows made in Python 3 which contains many features such as multi-client support and cross-platform server.

detect-it-easy

Program for determining types of files for Windows, Linux and MacOS.

devilx

A very dangerous tool for termux.

dircreate2system

Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting

dirtycred

dirtypipe-container-breakout-poc

Container Excape PoC for CVE-2022-0847 "DirtyPipe"

dismap

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

dll-hijacking-poc

A quick POC on how to embed a meterpreter in Firefox via DLL hijacking

dns-fender

A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.

dnsserver

Technitium DNS Server

dnstake

DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

docker-images

docker images

docker-rapid7-vm

InsightVM/Nexpose Console and Engine Docker Images