Pinned Repositories
agent_tesla_panel_rce
This is Metasploit module who exploit the command injection vulnerability in control center of the agent Tesla.
behind_cloudflare
This module can help you to discover the real IP address behind the Cloudflare service. Archived project because replaced by https://github.com/mekhalleh/cloud_lookup.
behind_cloudfront
This module can help you to discover the real IP address behind the Cloudfront service. Archived project because replaced by https://github.com/mekhalleh/cloud_lookup.
cloud_lookup
This module can be useful if you need to test the security of your server and your website behind a solution Cloud based. By discovering the origin IP address of the targeted host.
cve-2019-0708
Metasploit module for massive Denial of Service using #Bluekeep vector.
exchange_proxylogon
Module pack for #ProxyLogon (part. of my contribute for Metasploit-Framework) [CVE-2021-26855 && CVE-2021-27065]
rfi-wp_sprit
This script exploit the LFI in Wordpress plugin WP with Spritz 1.0
vbulletin_5x_unauth_rce
vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.
challenge-richelieu
Solution du challenge Richelieu (DGSE)
emoteted
This code is just a fun, developed for the need for the articles devoted to Emotet.
mekhalleh's Repositories
mekhalleh/cve-2019-0708
Metasploit module for massive Denial of Service using #Bluekeep vector.
mekhalleh/cloud_lookup
This module can be useful if you need to test the security of your server and your website behind a solution Cloud based. By discovering the origin IP address of the targeted host.
mekhalleh/exchange_proxylogon
Module pack for #ProxyLogon (part. of my contribute for Metasploit-Framework) [CVE-2021-26855 && CVE-2021-27065]
mekhalleh/behind_cloudflare
This module can help you to discover the real IP address behind the Cloudflare service. Archived project because replaced by https://github.com/mekhalleh/cloud_lookup.
mekhalleh/behind_cloudfront
This module can help you to discover the real IP address behind the Cloudfront service. Archived project because replaced by https://github.com/mekhalleh/cloud_lookup.
mekhalleh/rfi-wp_sprit
This script exploit the LFI in Wordpress plugin WP with Spritz 1.0
mekhalleh/agent_tesla_panel_rce
This is Metasploit module who exploit the command injection vulnerability in control center of the agent Tesla.
mekhalleh/behind_ingensec
This module can help you to discover the real IP address behind the BinarySec/IngenSec service. Archived project because replaced by https://github.com/mekhalleh/cloud_lookup.
mekhalleh/citrix_dir_traversal_rce
The exploitation module for the CVE-2019-19781 #Shitrix (Vulnerability in Citrix Application Delivery Controller and Citrix Gateway).
mekhalleh/cve-2018-6574
mekhalleh/kerio_login
This module tests credentials on Kerio Connect WebMail servers (versions are 7.3.3 and 7.4.3).
mekhalleh/metasploit-framework
Metasploit Framework
mekhalleh/vbulletin_5x_unauth_rce
vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.
mekhalleh/APCLdr
Payload Loader With Evasion Features
mekhalleh/kernel-exploit-factory
Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.
mekhalleh/ntdsxtract
Active Directory forensic framework
mekhalleh/NtRemoteLoad
Remote Shellcode Injector
mekhalleh/proxmark3
RRG / Iceman repo, the most totally wicked repo around if you are into Proxmark3 and RFID hacking
mekhalleh/ransomware_ability
This module can be useful if you want do a ransomware demonstration or a ... joke.
mekhalleh/reactos
A free Windows-compatible Operating System
mekhalleh/umbraco_xslt_cs_auth_exec
This is Metasploit module who exploit the authenticated command injection vulnerability in Umbraco CMS version 7.12.4.
mekhalleh/VX-API
Collection of various malicious functionality to aid in malware development