clubmontana Goto Github PK

0day-today-exploits

0dat.today Scam Site

advanced-sql-injection-cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

advanced-sql-injection-scanner

Ivan Ricart Borges - Test for didactic purposes of web pages vulnerables to SQL injection using dbo database user with xp_cmdshell execution permissions. Using patterns from Internet search engines to extract potentially vulnerable web addresses and test them by changing the GET parameters using invalid Transact-SQL conversion function to cause through unhandled errors by IIS web server to show critical information. If certain features are given and using advanced injection techniques a malicious attacker could gain control of the entire system by executing shell commands in the SQL database engine.

analyzer

🧬 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

aware

PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP

bucky

Bucky (An automatic S3 bucket discovery tool)

centox

Centox is an injection handler with a collection of payloads for remote access, executable deployment and more for Windows, Mac and Linux

chameleon

Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres and MySQL)

chimeraddos

chromestealerextension

For Educational Purpose ONLY!

clubmontana

Config files for my GitHub profile.

cobaltbus

Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus

coinbase-account-checker

conti-ransomware-leaks

cryptsky

A simple, fully python ransomware PoC

cursedchrome

Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.

cve-2019-15514

telegram bug that discloses user's hidden phone number (still unpatched) (exploit included)

cve-2021-41773

Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773

cvechecker

Check for Common Vulnerabilities and Exposures (CVEs) by either entering a specific CVE ID, a device name, or an IP address.

dirbrute

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

divinityprotector

Executable crypter written in python

dogerat

A multifunctional Telegram based Android RAT without port forwarding.

festin

FestIn - S3 Bucket Weakness Discovery

google-hacking-database-ghdb

The GHDB is an index of search queries (we call them dorks) used to find publicly available information, intended for pentesters and security researchers.

hydra

Tiny backdoor, built for survival

icarus-hvnc-rat

Decompiled by #Crackedsoftware394

jarbou3-rat

Jarbou3 is rat tool coded in python with C&C which can accept multiple connections from clients

jexactyl

Jexactyl is a fast, advanced and customisable game management panel and billing system in one. https://discord.com/invite/qttGR4Z5Pk

lethalx

monkey

Infection Monkey - An automated pentest tool