Pinned Repositories
AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
awesome-python-applications
💿 Free software that works great, and also happens to be open-source Python.
bigipsecurity
This document describes common misconfigurations of F5 Networks BigIP systems.
BurpSuite-collections
BurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦
CVE-2020-3452
CVE-2020-3452 exploit
HFS-Http-File-Server
This is the exploit code for HFS-HTTP File server. Versions 2.3.x were vulnerable to Remote code execution vulnerability. I
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
Redis-Server-Exploit
This will give you shell access on the target system if redis server is not configured properly and faced on the internet without any authentication
security
Stuff about it-security that might be good to know
Shell-Uploader
This is just a shell uploader which helps in uploading shell from your local machine.
iw00tr00t's Repositories
iw00tr00t/HFS-Http-File-Server
This is the exploit code for HFS-HTTP File server. Versions 2.3.x were vulnerable to Remote code execution vulnerability. I
iw00tr00t/IntruderPayloads
A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
iw00tr00t/MAM-Security-Checklist
Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution
iw00tr00t/mybook
my pdf books
iw00tr00t/origami-pdf
Origami is a Ruby framework designed to parse, analyze, and forge PDF documents.
iw00tr00t/pentest_study
iw00tr00t/phpmyadmin
phpMyAdmin itself
iw00tr00t/PoCs
Proof of Concepts for CVE-2016–3714
iw00tr00t/pysslShells
Finally, reverse/bind shells written in python, encrypted with ssl!
iw00tr00t/shellcode_tools
Miscellaneous tools written in Python, mostly centered around shellcodes.
iw00tr00t/SpringBreaker
Exploit PoC for Spring RCE issue (CVE-2011-2894)
iw00tr00t/webshell
This is a webshell open source project
iw00tr00t/xss.swf
a tiny tool for swf hacking, just browse it:)
iw00tr00t/Y.A.S.P.
Yet Another SMB PSEXEC (Y.A.S.P) Tool