Dahua IPC/VTH/VTO devices auth bypass exploit
About:
The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.
use - python3 dahua_exploit.py http(s)://ip:port
QHack 2022 Problems from Coding Challenges 2022. Rules and how it works To test
CryptoPunk Stealer The sole purpose of this script is to download the entire CryptoPunk NFT collection. How does it work? Basically, the website where
CVE-2021-41773 Fast python tool to test apache path traversal CVE-2021-41773 in a List of url Usage :- create a live urls file and use the flag "-l" p
laravel-exploits Exploit for CVE-2021-3129
Encrypted messaging application with the use of MIFARE DESfire chip to store the private/public keys needed for the application authentication
CVE-2022-23046 PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL s
Receive notifications on the most recent disclosed CVE's.
InvisibilityCloak Proof-of-concept obfuscation toolkit for C# post-exploitation tools. This will perform the below actions for a C# visual studio proj
A simple python script to dump remote files through a local file read or local file inclusion web vulnerability. Features Dump a single file w
subDomainsBrute 1.4 A fast sub domain brute tool for pentesters. It works with P
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service. This tool can help a digital forensic investigator to know the conte
MozDef: Documentation: https://mozdef.readthedocs.org/en/latest/ Give MozDef a Try in AWS: The following button will launch the Mozilla Enterprise Def
A tool combined with the advantages of masscan and nmap
This is a collection of Python scripts to make working with the Arch Linux Security Tracker easier.
Visibility and Mitigation for Log4J vulnerabilities Several scripts for the visibility and mitigation of Log4J vulnerabilities. Static Scanner - Linux
Microsoft_Exchange_Server_SSRF_CVE-2021-26855 zoomeye dork:app:"Microsoft Exchange Server" 使用Seebug工具箱及pocsuite3编写的脚本Microsoft_Exchange_Server_SSRF_CV
A tool for removing malicious content from input data before saving data into database. It takes input containing HTML with XSS scripts and returns va
🔍 Mr.Holmes Mr.Holmes is a information gathering tool (OSINT). Is main purpose is to gain information about domains,username and phone numbers with t
RonnieColemanYARAParser This script is named after Ronnie Coleman, and peforms bulk lifts on arbitary file features using YARA console logging. Requir
Shodan Quick Recon A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities Configuration You must edit the python code, and in
1 Feb 14, 2022
7 Oct 22, 2022
12 Nov 09, 2022
228 Nov 25, 2022
4 Nov 06, 2021
2 Feb 15, 2022
7 Nov 24, 2022
259 Dec 19, 2022
48 Dec 03, 2022
2 Oct 18, 2022
96 Dec 20, 2022
2.2k Jan 08, 2023
59 Dec 24, 2022
6 Jul 13, 2022
15 May 21, 2022
37 Nov 12, 2022
2 Jul 05, 2022
534 Jan 08, 2023
20 Dec 13, 2022
5 Aug 09, 2022