pimps

Pinned Repositories

CVE-2017-1000486
Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit
Language:Python87 2 125
CVE-2017-5645
CVE-2017-5645 - Apache Log4j RCE due Insecure Deserialization
92 2 031
CVE-2018-7600
Exploit for Drupal 7 <= 7.57 CVE-2018-7600
Language:Python125 5 264
CVE-2019-2725
WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit
Language:Python46 6 012
docker-java-xxe
Docker image to test XXE attacks in java with tomcat.
Language:Smarty5 1 02
gopher-tomcat-deployer
Gopher Tomcat Deployer
Language:Python47 1 04
JNDI-Exploit-Kit
JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection）
Language:Java892 19 0166
pdf-NTLMLeaker
This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
Language:Python23 2 01
wsuxploit
This is a weaponized WSUS exploit
Language:Shell279 15 345
ysoserial-modified
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
Language:Java174 5 038

pimps's Repositories

pimps/JNDI-Exploit-Kit
JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection）
Language:Java892 19 0166
pimps/wsuxploit
This is a weaponized WSUS exploit
Language:Shell279 15 345
pimps/ysoserial-modified
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
Language:Java174 5 038
pimps/CVE-2018-7600
Exploit for Drupal 7 <= 7.57 CVE-2018-7600
Language:Python125 5 264
pimps/CVE-2017-5645
CVE-2017-5645 - Apache Log4j RCE due Insecure Deserialization
92 2 031
pimps/CVE-2017-1000486
Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit
Language:Python87 2 125
pimps/gopher-tomcat-deployer
Gopher Tomcat Deployer
Language:Python47 1 04
pimps/CVE-2019-2725
WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit
Language:Python46 6 012
pimps/pdf-NTLMLeaker
This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
Language:Python23 2 01
pimps/docker-java-xxe
Docker image to test XXE attacks in java with tomcat.
Language:Smarty5 1 02
pimps/rizzoma-docker
This is a docker image to run rizzoma standalone for testing or quick deploys.
Language:CoffeeScript4 1 11
pimps/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Language:Python3 2 0
pimps/CTF-Write-ups
My CTF Write-ups
1 1 0
pimps/CVE-2019-2726
CVE-2019-2725 命令回显
Language:Python1 0 0
pimps/red_team_tool_countermeasures
Language:YARA1 0 0
pimps/cmd_and_kubectl_demos
Language:Dockerfile0 0
pimps/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Language:C0 0
pimps/ipwndfu
open-source jailbreaking tool for many iOS devices
Language:Python0 0
pimps/knary
A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
Language:Go0 0
pimps/TheGoonies-Assets-1
All the assets done for TheGoonies CTF Team.
1 0
pimps/tnumb3rs
CTF Challenge TNumb3rs
Language:Python1 01
pimps/trash
Language:JavaScript1 0