Pinned Repositories
code-edit
Turn any textarea tag into syntax-highlighted code editor with one script tag
CVE-2022-2586-LPE
CVE-2022-2586: Linux kernel nft_object UAF
CVE-2022-37042
Zimbra CVE-2022-37042 Nuclei weaponized template
Email-Vulnerablity-Checker
Find Email Spoofing Vulnerablity of domains
http-proxy-ipv6-pool
Make every request from a separate IPv6 address.
mailtools
Perfect scripts for all the hustle we have with mailing
stripe-checker
Credit card checker using stripe payment gateway.
subdirectories-discover
Perfect wordlist for discovering directories and files on target site
wso-ng
The new generation of famous WSO web shell. With perks included
aels's Repositories
aels/subdirectories-discover
Perfect wordlist for discovering directories and files on target site
aels/mailtools
Perfect scripts for all the hustle we have with mailing
aels/wso-ng
The new generation of famous WSO web shell. With perks included
aels/Email-Vulnerablity-Checker
Find Email Spoofing Vulnerablity of domains
aels/CVE-2023-21608-Acrobat-RCE
Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
aels/decode-spam-headers
A script that helps you understand why your E-Mail ended up in Spam
aels/dnstake
DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
aels/EvilSln-vs-code-exec
A New Exploitation Technique for Visual Studio Projects
aels/leaky-paths
A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
aels/mailcat-find-email
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
aels/bypass-403
A simple script just made for self use for bypassing 403
aels/ChatGPT-API-server
API server for ChatGPT
aels/cloudflare-origin-ip
Try to find the origin IP of a webapp protected by Cloudflare.
aels/cobaltstrike-beacon-rust
CobaltStrike beacon in rust
aels/cve-2022-39197
cve-2022-39197 poc
aels/CVE-2022-44666-office-rce
Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape, which was not fully fixed as CVE-2022-44666 in the patches released on December, 2022.
aels/CVE-2022-47966
POC for CVE-2022-47966 affecting multiple ManageEngine products
aels/CVE-2023-34960
CVE-2023-34960 Chamilo PoC
aels/damage
aels/DNS-Analysis-Server
Tools to assess DNS security.
aels/dnscrypt-proxy
dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
aels/google-search
a cli google client written by ai (chatgpt) that bypasses captcha and rate limiting by using the google alerts "preview" feature
aels/maddy
✉️ Composable all-in-one mail server.
aels/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
aels/Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
aels/ProtectMyTooling
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
aels/ProxyNotShell-PoC
aels/pycrypt
Python Based Crypter That Can Bypass Any Kinds Of Antivirus Products
aels/subzuf
a smart DNS response-guided subdomain fuzzer
aels/svn-extractor
simple script to extract all web resources by means of .SVN folder exposed over network.