Pinned Repositories
3XPL01t5
Random Exploits
CVE-2019-19781-CitrixRCE
Citrix Unauthorized Remote Code Execution Attacker - CVE-2019-19781
cve-2020-0688-webshell-upload-technique
cve-2020-0688 UNIVERSAL Python implementation utilizing ASPX webshell for command output
CVE-2020-1938-Clean-Version
CVE-2020-1938(GhostCat) clean and readable code version
Invoke-PowerCloud
Deliver powershell paylods via DNS TXT via CloudFlare using PowerShell
LonelyALPC-BypassUAC
Lonely x64 binary to Bypass Win10 UAC utilizing ALPC method with [command line]
MS08-067-Case-Study
OSWE
OSWE Preparation
Pentest-notes
Pentest stuff
wp-file-manager-0day
wp-file-manager 6.7 (Aug 2020) Wordpress Plugin 0day - Remote Code Execution
w4fz5uck5's Repositories
w4fz5uck5/MS08-067-Case-Study
w4fz5uck5/h8mail
Password Breach Hunting and Email OSINT tool, locally or using premium services. Supports chasing down related email
w4fz5uck5/LOTUS-DOMINO-EXPLOIT-2007-0977-2005-2428-
LOTUS DOMINO EXPLOIT (2007-0977 / 2005-2428) Bypass OpenSSL Old Ciphers Update!
w4fz5uck5/altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
w4fz5uck5/Awesome-Cellular-Hacking
Awesome-Cellular-Hacking
w4fz5uck5/bluekeep-exploit
Bluekeep(CVE 2019-0708) exploit released
w4fz5uck5/CloudScraper
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
w4fz5uck5/CVE-2019-0604
cve-2019-0604 SharePoint RCE exploit
w4fz5uck5/CVE-2019-0708
Scanner PoC for CVE-2019-0708 RDP RCE vuln
w4fz5uck5/DatagramTunneler
Simple C++ cross-platform client/server app forwarding UDP datagrams through a TCP connection.
w4fz5uck5/dirmap
An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
w4fz5uck5/fav-up
IP lookup from favicon using Shodan
w4fz5uck5/flare-floss
FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.
w4fz5uck5/goDoH
🕳godoh - A DNS-over-HTTPS C2
w4fz5uck5/gopkg
example for the go pkg's function
w4fz5uck5/htcap
htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.
w4fz5uck5/Invoke-PSImage
Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
w4fz5uck5/Kage
Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler
w4fz5uck5/lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
w4fz5uck5/localtunnel
expose yourself
w4fz5uck5/lte-gtp-simulator
A 3gpp GTP signaling simulator and load generator.
w4fz5uck5/odat
ODAT: Oracle Database Attacking Tool
w4fz5uck5/Osmedeus
Fully automated offensive security framework for reconnaissance and vulnerability scanning
w4fz5uck5/Security-Research
Exploits written by the Rhino Security Labs team
w4fz5uck5/Serpico
SimplE RePort wrIting and COllaboration tool
w4fz5uck5/sherlock
🔎 Find usernames across social networks
w4fz5uck5/SpaceCow
Windows Rootkit written in Python
w4fz5uck5/ThunderShell
Python / C# Unmanaged PowerShell based RAT
w4fz5uck5/UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
w4fz5uck5/WhatBreach
OSINT tool to find breached emails, databases, pastes, and relevant information