Pinned Repositories
CVE-2024-4040
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
CVE-2024-4577
Argument injection vulnerability in PHP
DeepWeb
DeepWeb is a tool that extracts links from a webpage and does a deep analysis on every link.
F5-BIG-IP-Scanner
F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.
forbiddenpass
Gsec
Web Security Scanner
IGF
Informatrion Gathering Framework
spyhunt
recon for bug hunters
valhalla
Valhalla finds vulnerable devices on shodan, it can also scan a list of domains to find vulnerabilities.
wpdisect
WpDisect is a wordpress hacking tool that finds vulnerabilities in wordpress.
gotr00t0day's Repositories
gotr00t0day/spyhunt
recon for bug hunters
gotr00t0day/Gsec
Web Security Scanner
gotr00t0day/forbiddenpass
gotr00t0day/valhalla
Valhalla finds vulnerable devices on shodan, it can also scan a list of domains to find vulnerabilities.
gotr00t0day/IGF
Informatrion Gathering Framework
gotr00t0day/DeepWeb
DeepWeb is a tool that extracts links from a webpage and does a deep analysis on every link.
gotr00t0day/F5-BIG-IP-Scanner
F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.
gotr00t0day/CVE-2024-4577
Argument injection vulnerability in PHP
gotr00t0day/CVE-2024-4040
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
gotr00t0day/vulnparams
crawl a website for links and expose all the vulnerable parameters.
gotr00t0day/OpenSSH-Scanner
OpenSSH Vulnerabilities Scanner: Bulk Scanning Tool for 21 different OpenSSH CVEs.
gotr00t0day/gotasn
Extract the IP range associated with a given ASN (Autonomous System Number) and subsequently utilize the Masscan tool to identify open HTTP ports within that range.
gotr00t0day/gotr00t0day
gotr00t0day/PathTraversal
gotr00t0day/rmap
Automated enumeration for red teamers
gotr00t0day/gotr00tbot
discord.py bot
gotr00t0day/LinkFinder
A python script that finds endpoints in JavaScript files
gotr00t0day/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
gotr00t0day/Domainator
Domainator is a tool that will find new assets for any organization.
gotr00t0day/CVE-2022-1388
A remote code execution vulnerability exists in the iControl REST API feature of F5's BIG-IP product. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands with root privileges.
gotr00t0day/DDOS-RootSec
Explore RootSec's DDOS Archive, featuring top-tier scanners, powerful botnets (Mirai & QBot) and other variants, high-impact exploits, advanced methods, and efficient sniffers. Ideal for cybersecurity professionals and researchers.
gotr00t0day/HostHeaderInjection
gotr00t0day/Ivanti_PoC
Authentication bypass in Ivanti Endpoint Manager Mobile
gotr00t0day/localipbug
In some cases the Miscorosoft HTTP Server API leaks internal ip addresses while sending a GET / HTTP/1.0 request to the server.
gotr00t0day/CVE-2024-28995
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.
gotr00t0day/gotr00t0day.github.io
gotr00t0day/NextGen-Mirth-Connect-Exploit
A vulnerability exists within Mirth Connect due to its mishandling of deserialized data. This vulnerability can be leveraged by an attacker using a crafted HTTP request to execute OS commands within the context of the target application.
gotr00t0day/TokenFucker
Token Stealing Tool for Windows and Linux
gotr00t0day/DVR_Sploit
Simple python3 script to automate CVE-2018-9995
gotr00t0day/fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework