Tools
XSSer Automated Detection, Exploitation, and Reporting Framework for XSS Vulnerabilities
Tools
Bulwark Organizational Asset and Vulnerability Management Tool
Tools
CIntruder Captcha Bypass Tool
Exploits
Ruby on Rails 5.0.1 – Remote Code Execution
Tools
Arissploit Pentest Framework
Tools
AutoRDPwn Post Exploitation Framework
Tools
Raccoon Offensive Security Tool for Reconnaissance and Information Gathering
Tools
Utopia Linux Post Exploitation Framework
Exploits
pfSense 2.4.4-p3 – Cross-Site Request Forgery
Tools
Patator Multi-Threaded Python Brute-Forcing
Tools
DirSearch brute force directories and files in websites
Tools
Findsploit quickly and easily find exploits
Exploits
FTPDummy! 4.80 Local Buffer Overflow
Exploits
WordPress NexosReal Estate Theme 1.7 Cross Site Scripting / SQL Injection
Exploits
Sophos VPN Web Panel 2020 Denial Of Service
Tools
PowerZure
Tools
StegCracker
Tools
ReverseAPK
Exploits
Plex Unpickle Dict Windows Remote Code Execution
Exploits
PHP 7.4 FFI – ‘disable_functions’ Bypass
Exploits
Wing FTP Server 6.3.8 Remote Code Execution
Exploits
Microsoft Windows MSHTA.EXE .HTA File XML Injection
Tools
Ruler
Tools
RPCScan
Tools
EagleShell
Tools
CrackMapExec
Tools
Kaboom – Automatic Pentest Bash Script
Tools
Archery – A Security Tool
Exploits
OpenSSH SCP Client – Write Arbitrary Files
Exploits
KPOT Botnet – File Download/Source Code Disclosure Vulnerability
Exploits
Apache Spark – Unauthenticated Command Execution (Metasploit)
Tools
Commix – Automated All-in-One OS command injection and exploitation tool
Tools
RouterSploit – Exploitation Framework for Embedded Devices
News
Dunkin Donuts Hacked & User Information Stolen
Tools
0xWPBF – WordPress Users Enumerate and Brute Force Attack
Tools
LazyRecon – Automate Reconnaissance Process
Tools
CloudBunny – Reveal IP of Server Using WAF As Proxy
Exploits
Dell OpenManage Network Manager Multiple Vulnerabilities
Tools
LDAP Search -Bruteforce Passwords, Enumerate Users, Groups, and Computers from Windows Domains.
Tools
Jok3r – Network and Web Pentest Framework
Exploits
OOP CMS BLOG 1.0 – ‘search’ SQL Injection
Exploits
Mongo Web Admin 6.0 – Information Disclosure
Tools
TIDoS – The Offensive Web Application Penetration Testing Framework
Tools
Mobile Security Framework (MobSF)
Tools
GitDump – Pentesting Tool to Dump .git Source Code When Directory Traversal is Disabled
Exploits
Apache OFBiz 16.11.04 – XML External Entity Injection
Exploits
Microsoft Windows 10 – Local Privilege Escalation (UAC Bypass)
Tools
Wifiphisher – The Rogue Access Point Framework
Tools
Fluxion – MITM WPA Key Retrieval
Exploits
libSSH – Authentication Bypass
Exploits
Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)
Exploits
LayerBB Forum 1.1.1 – ‘search_query’ SQL Injection
Exploits
NICO-FTP 3.0.1.19 – Buffer Overflow
Tools
SubScraper – External Pentest Tool for Subdomain Enumeration
News
50 Million Users Affected in Facebook Breach
Exploits
Microsoft Edge – Sandbox Escape
Tools
Wifivoid – Wifi Jamming Ruby Script
Tutorials
Nikto Cheat Sheet Infographic
Tools
WiFiBroot – A WiFi Pentest Cracking tool for WPA/WPA2 (Handshake, PMKID, Offline Cracking, EAPOL)
Tools
Network Attacker – Wifi Stress Testing Bash Script
Tools
SocialBox – Bruteforce Attack Framework
Exploits
LG SuperSign EZ CMS 2.5 – Local File Inclusion
News
Newegg Hacked and Credit Card Information Stolen
Exploits
Ubisoft Uplay Desktop Client – Remote Code Execution
Exploits
LG Smart IP Camera 1508190 – Backup File Download
Exploits
Joomla Component JCK Editor 6.4.4 – ‘parent’ SQL Injection
Tools
PacketWhisper DNS Exfiltration Tool
Tools
PA Toolkit (Pentester Academy Wireshark Toolkit)
Tutorials
Avoiding DNS Leaks Within OpenVPN
Exploits
Tor Browser SMB Deanonymization & Information Disclosure
Exploits
MyBB 1.8.17 – Cross-Site Scripting
Tools
badKarma – Advanced Network Reconnaissance Toolkit
Tools
SQLMAP – Automatic SQL Injection Tool 1.2.9 Released
Exploits
FUJI XEROX DocuCentre-V 3065 Printer – Remote Command Execution
Exploits
FTPShell Server 6.80 – ‘Add Account Name’ Buffer Overflow (SEH)
Exploits
Wikipedia 12.0 – Denial of Service
Exploits
Eaton Xpert Meter 13.4.0.10 – SSH Private Key Disclosure
Tools
CloudBuster – A Cloudflare Resolver
Tools
Trackerjacker – Like Nmap For Mapping Wifi Networks
Exploits
WordPress Plugin Export Users to CSV 1.1.1 – CSV Injection
Tools
Passhunt – An Easy Way To Find Default Credentials
Exploits
ASUS-DSL N10 1.1.2.2_17 Authentication Bypass
Tools
BYOB (Build Your Own Botnet)
Tools
Free Wireless Passwords For Airports Around The World
Exploits
ASUS DSL-N12E_C1 1.1.2.3_345 Remote Command Execution
Tools
s-tui The Stress Terminal UI
Tools
What Linux Operating System is Right for You?
Exploits
SonicWall Global Management System XMLRPC set_time_zone Command Injection (Metasploit)
Tools
Pure Blood Penetration Testing Framework
Tools
WAScan – Web Application Scanner
News
DHS Claims Russia Hacked United States Power Utilities
Exploits
Davolink DVW 3200 Router Password Disclosure
Exploits
Windows Speech Recognition Buffer Overflow
News
Crypto Mining Malware Surpasses Ransomware
Exploits
CMS Made Simple 2.2.5 Authenticated Remote Command Execution
Exploits
WordPress Plugin All In One Favicon Cross Site Scripting
Exploits
MyBB New Threads Plugin – Cross-Site Scripting
Tools
TOR Virtual Network Tunneling Tool 0.3.3.9 (Bridge Authority Update)
News
Have I been Pwned V3 Reaches 95% of Hashes Cracked
Exploits
FTP2FTP 1.0 Arbitrary File Download
Exploits
WordPress Plugin Job Manager v4.1.0 Stored Cross Site
Tools
Hawkeye – Filesystem Analysis Tool
Exploits
Instagram Clone Script 2.0 Cross-Site Scripting
News
Medical Records of Dead People Being Sold on Dark Net
Exploits
D-Link DIR601 2.02 Credential Disclosure
Exploits
Tor Browser – Use After Free Vulnerability DOS
Tools
DNS Spider Multithreaded Bruteforcer 1.0
Tools
(CMSeek) Content Management System Detection and Exploitation Suite
Exploits
PolarisOffice 2017 v8 Remote Code Execution
Exploits
Online Trade 1 Information Disclosure
News
Latest Kim Dotcom Appeal Case Lost
News
Detroit Men Hack Gas Pump Stealing 600 Gallons of Gas
Tools
Subjack – The Hostile Subdomain Takeover Tool
Tools
Guasap Forensic Tool for WhatsApp
News
Israel Blames Hamas for Spyware Campaign Against Soldiers Through World Cup App
Exploits
Dolibarr ERP CRM < 7.0.3 PHP Code Injection
Exploits
DAMICMS 6.0.0 Cross-Site Request Forgery (Add Admin)
Exploits
VMware NSX SD-WAN Edge < 3.1.2 Command Injection
Exploits
TP-Link TL-WR841N V13 Command Injection Vulnerability
Exploits
hycus CMS 1.0.4 Authentication Bypass Vulnerability
News
Millions of Users Information Compromised in Adidas Breach
News
Gentoo has their Github hacked
Tools
Raptor WAF 0.5 Released
Exploits
Cisco Adaptive Security Appliance Path Traversal
Exploits
HongCMS 3.0.0 SQL Injection
News
Bithumb Says They Have Recovered $14 Million In Stolen Crypto Currencies
News
Ticketmaster Releases Information Regarding Breach
Exploits
Liferay Portal < 7.0.4 Blind Server-Side Request Forgery
News
Citizens of Midwest City Oklahoma Banking and Credit Card Information Stolen After Utility Accounts Hacked
Tools
Tool Finally Released to Decrypt Thanatos Ransomware
Exploits
WordPress Plugin Comments Import & Export < 2.0.4 - CSV Injection
Exploits
Foxit Reader 9.0.1.1049 – Remote Code Execution
News
FlightRadar24 Hacked
News
$100 Smart Lock Tapplock Hacked in 2 Seconds by Pentesters
Exploits
rtorrent 0.9.6 – Denial of Service
Exploits
Microsoft Windows 10 – Child Process Restriction Mitigation Bypass
Exploits
Joomla! Component EkRishta 2.10 – ‘cid’ SQL Injection
Exploits
WordPress Plugin Pie Register < 3.0.9 - Blind SQL Injection
Exploits
Schools Alert Management Script – SQL Injection
Exploits
Joomla! Component EkRishta 2.10 – ‘username’ SQL Injection
Exploits
Canon PrintMe EFI – Cross-Site Scripting
Exploits
SearchBlox 8.6.7 – XML External Entity Injection
Exploits
CyberArk < 10 - Memory Disclosure
Exploits
GreenCMS 2.3.0603 – Cross-Site Request Forgery / Remote Code Execution
Exploits
GreenCMS 2.3.0603 – Cross-Site Request Forgery (Add Admin)
Exploits
Smartshop 1 – Cross-Site Request Forgery
Exploits
Smartshop 1 – ‘id’ SQL Injection
News
SingTel Routers Left Vulnerable To Attack Due To Open Ports
News
Buffalo Wild Wings Twitter Account Hacked
Exploits
Git < 2.17.1 - Remote Code Execution
News
FBI Warns That Information of 100,000 Homes Was Hacked
Exploits
NUUO NVRmini2 / NVRsolo – Arbitrary File Upload
Exploits
SQL Injection Vulnerability in Issue Trak <= 7.0 (Possibly applicable up to version 9.7)
Exploits
MyBB ChangUonDyU Plugin 1.0.2 – Cross-Site Scripting
Exploits
Pivotal Spring Java Framework < 5.0 - Remote Code Execution
Exploits
Facebook Clone Script 1.0.5 – ‘search’ SQL Injection
Exploits
Facebook Clone Script 1.0.5 – Cross-Site Request Forgery
Exploits
CloudMe Sync < 1.11.0 - Buffer Overflow (SEH) (DEP Bypass)
Exploits
Bitmain Antminer D3/L3+/S9 – Remote Command Execution
Tools
TOR Virtual Network Tunneling Tool 0.3.3.6
Exploits
Honeywell XL Web Controller – Cross-Site Scripting
News
Pakistani Military Hacks US and Their Partners Phones
News
Judge Rules @RealDonaldTrump Cannot Block Twitter Users
News
Malware Dubbed VPNFilter Takes Over 500,000 Routers
Exploits
WordPress Plugin Peugeot Music – Arbitrary File Upload
News
Pakistan accused for hacking Australian diplomats
News
Russia Suspected in Exploitation of 500,000 Cisco Routers to Attack Ukraine
Exploits
Easy File Uploader 1.7 – SQL Injection / Cross-Site Scripting
News
10k Accounts Exposed after TeenSafe App Flaw
News
Kaspersky Labs Identifies Flaw In Pet Trackers Exposing Infromation to Cyber Criminals
News
Malicious PHP Scripts Linked to Brain Food Botnet Injfect 2,400 Websites in a Week
Exploits
Zechat 1.5 – SQL Injection / Cross-Site Request Forgery
Exploits
PaulPrinting CMS Printing 1.0 – SQL Injection
Exploits
Nordex N149/4.0-4.5 – SQL Injection
Exploits
Merge PACS 7.0 – Cross-Site Request Forgery
Exploits
mySCADA myPRO 7 – Hard-Coded Credentials
Uncategorized
What is Computer Forensics?
Exploits
Infinity Market Classified Ads Script 1.6.2 – Cross-Site Request Forgery
Exploits
Nanopool Claymore Dual Miner 7.3 – Remote Code Execution
Exploits
RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scriptin
Exploits
Multiplayer BlackJack Online Casino Game 2.5 – Persistent Cross-Site Scripting
Exploits
MyBB Admin Notes Plugin 1.1 – Cross-Site Request Forgery
Exploits
WordPress Plugin Metronet Tag Manager 1.2.7 – Cross-Site Request Forgery
Exploits
NodAPS 4.0 – SQL injection / Cross-Site Request Forgery
Exploits
Intelbras NCLOUD 300 1.0 – Authentication bypass
Exploits
Powerlogic/Schneider Electric IONXXXX Series – Cross-Site Request Forgery
News
Twitter exposes passwords change them now
Exploits
IceWarp Mail Server Directory Traversal
News
GitHub bug exposed some users passwords in plain text
Tools
Wireshark Analyzer 2.6.0
Tutorials
Capture Password from HTTP Packet
Tools
Linux Exploit Suggester
Tutorials
Domain Isolation
Uncategorized
AI Revolution by Steven Levy Reading Response
Tools
Bash Apache Virtual Host Creation Script
Tutorials
Introduction to Metasploit & MSF Workspaces
Tools
Using MacChanger on Linux
Tutorials
Using GNU Privacy Guard (GPG)
Tuesday, August 4, 2020
Tools
XSSer Automated Detection, Exploitation, and Reporting Framework for XSS Vulnerabilities
Tools
Bulwark Organizational Asset and Vulnerability Management Tool
Tools
CIntruder Captcha Bypass Tool
Exploits
Ruby on Rails 5.0.1 – Remote Code Execution
Tools
Arissploit Pentest Framework
Tools
AutoRDPwn Post Exploitation Framework
Tools
Raccoon Offensive Security Tool for Reconnaissance and Information Gathering
Tools
Utopia Linux Post Exploitation Framework
Exploits
pfSense 2.4.4-p3 – Cross-Site Request Forgery
Tools
Patator Multi-Threaded Python Brute-Forcing
Tools
DirSearch brute force directories and files in websites
Tools
Findsploit quickly and easily find exploits
Exploits
FTPDummy! 4.80 Local Buffer Overflow
Exploits
WordPress NexosReal Estate Theme 1.7 Cross Site Scripting / SQL Injection
Exploits
Sophos VPN Web Panel 2020 Denial Of Service
Tools
PowerZure
Tools
StegCracker
Tools
ReverseAPK
Exploits
Plex Unpickle Dict Windows Remote Code Execution
Exploits
PHP 7.4 FFI – ‘disable_functions’ Bypass
Exploits
Wing FTP Server 6.3.8 Remote Code Execution
Exploits
Microsoft Windows MSHTA.EXE .HTA File XML Injection
Tools
Ruler
Tools
RPCScan
Tools
EagleShell
Tools
CrackMapExec
Tools
Kaboom – Automatic Pentest Bash Script
Tools
Archery – A Security Tool
Exploits
OpenSSH SCP Client – Write Arbitrary Files
Exploits
KPOT Botnet – File Download/Source Code Disclosure Vulnerability
Exploits
Apache Spark – Unauthenticated Command Execution (Metasploit)
Tools
Commix – Automated All-in-One OS command injection and exploitation tool
Tools
RouterSploit – Exploitation Framework for Embedded Devices
News
Dunkin Donuts Hacked & User Information Stolen
Tools
0xWPBF – WordPress Users Enumerate and Brute Force Attack
Tools
LazyRecon – Automate Reconnaissance Process
Tools
CloudBunny – Reveal IP of Server Using WAF As Proxy
Exploits
Dell OpenManage Network Manager Multiple Vulnerabilities
Tools
LDAP Search -Bruteforce Passwords, Enumerate Users, Groups, and Computers from Windows Domains.
Tools
Jok3r – Network and Web Pentest Framework
Exploits
OOP CMS BLOG 1.0 – ‘search’ SQL Injection
Exploits
Mongo Web Admin 6.0 – Information Disclosure
Tools
TIDoS – The Offensive Web Application Penetration Testing Framework
Tools
Mobile Security Framework (MobSF)
Tools
GitDump – Pentesting Tool to Dump .git Source Code When Directory Traversal is Disabled
Exploits
Apache OFBiz 16.11.04 – XML External Entity Injection
Exploits
Microsoft Windows 10 – Local Privilege Escalation (UAC Bypass)
Tools
Wifiphisher – The Rogue Access Point Framework
Tools
Fluxion – MITM WPA Key Retrieval
Exploits
libSSH – Authentication Bypass
Exploits
Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)
Exploits
LayerBB Forum 1.1.1 – ‘search_query’ SQL Injection
Exploits
NICO-FTP 3.0.1.19 – Buffer Overflow
Tools
SubScraper – External Pentest Tool for Subdomain Enumeration
News
50 Million Users Affected in Facebook Breach
Exploits
Microsoft Edge – Sandbox Escape
Tools
Wifivoid – Wifi Jamming Ruby Script
Tutorials
Nikto Cheat Sheet Infographic
Tools
WiFiBroot – A WiFi Pentest Cracking tool for WPA/WPA2 (Handshake, PMKID, Offline Cracking, EAPOL)
Tools
Network Attacker – Wifi Stress Testing Bash Script
Tools
SocialBox – Bruteforce Attack Framework
Exploits
LG SuperSign EZ CMS 2.5 – Local File Inclusion
News
Newegg Hacked and Credit Card Information Stolen
Exploits
Ubisoft Uplay Desktop Client – Remote Code Execution
Exploits
LG Smart IP Camera 1508190 – Backup File Download
Exploits
Joomla Component JCK Editor 6.4.4 – ‘parent’ SQL Injection
Tools
PacketWhisper DNS Exfiltration Tool
Tools
PA Toolkit (Pentester Academy Wireshark Toolkit)
Tutorials
Avoiding DNS Leaks Within OpenVPN
Exploits
Tor Browser SMB Deanonymization & Information Disclosure
Exploits
MyBB 1.8.17 – Cross-Site Scripting
Tools
badKarma – Advanced Network Reconnaissance Toolkit
Tools
SQLMAP – Automatic SQL Injection Tool 1.2.9 Released
Exploits
FUJI XEROX DocuCentre-V 3065 Printer – Remote Command Execution
Exploits
FTPShell Server 6.80 – ‘Add Account Name’ Buffer Overflow (SEH)
Exploits
Wikipedia 12.0 – Denial of Service
Exploits
Eaton Xpert Meter 13.4.0.10 – SSH Private Key Disclosure
Tools
CloudBuster – A Cloudflare Resolver
Tools
Trackerjacker – Like Nmap For Mapping Wifi Networks
Exploits
WordPress Plugin Export Users to CSV 1.1.1 – CSV Injection
Tools
Passhunt – An Easy Way To Find Default Credentials
Exploits
ASUS-DSL N10 1.1.2.2_17 Authentication Bypass
Tools
BYOB (Build Your Own Botnet)
Tools
Free Wireless Passwords For Airports Around The World
Exploits
ASUS DSL-N12E_C1 1.1.2.3_345 Remote Command Execution
Tools
s-tui The Stress Terminal UI
Tools
What Linux Operating System is Right for You?
Exploits
SonicWall Global Management System XMLRPC set_time_zone Command Injection (Metasploit)
Tools
Pure Blood Penetration Testing Framework
Tools
WAScan – Web Application Scanner
News
DHS Claims Russia Hacked United States Power Utilities
Exploits
Davolink DVW 3200 Router Password Disclosure
Exploits
Windows Speech Recognition Buffer Overflow
News
Crypto Mining Malware Surpasses Ransomware
Exploits
CMS Made Simple 2.2.5 Authenticated Remote Command Execution
Exploits
WordPress Plugin All In One Favicon Cross Site Scripting
Exploits
MyBB New Threads Plugin – Cross-Site Scripting
Tools
TOR Virtual Network Tunneling Tool 0.3.3.9 (Bridge Authority Update)
News
Have I been Pwned V3 Reaches 95% of Hashes Cracked
Exploits
FTP2FTP 1.0 Arbitrary File Download
Exploits
WordPress Plugin Job Manager v4.1.0 Stored Cross Site
Tools
Hawkeye – Filesystem Analysis Tool
Exploits
Instagram Clone Script 2.0 Cross-Site Scripting
News
Medical Records of Dead People Being Sold on Dark Net
Exploits
D-Link DIR601 2.02 Credential Disclosure
Exploits
Tor Browser – Use After Free Vulnerability DOS
Tools
DNS Spider Multithreaded Bruteforcer 1.0
Tools
(CMSeek) Content Management System Detection and Exploitation Suite
Exploits
PolarisOffice 2017 v8 Remote Code Execution
Exploits
Online Trade 1 Information Disclosure
News
Latest Kim Dotcom Appeal Case Lost
News
Detroit Men Hack Gas Pump Stealing 600 Gallons of Gas
Tools
Subjack – The Hostile Subdomain Takeover Tool
Tools
Guasap Forensic Tool for WhatsApp
News
Israel Blames Hamas for Spyware Campaign Against Soldiers Through World Cup App
Exploits
Dolibarr ERP CRM < 7.0.3 PHP Code Injection
Exploits
DAMICMS 6.0.0 Cross-Site Request Forgery (Add Admin)
Exploits
VMware NSX SD-WAN Edge < 3.1.2 Command Injection
Exploits
TP-Link TL-WR841N V13 Command Injection Vulnerability
Exploits
hycus CMS 1.0.4 Authentication Bypass Vulnerability
News
Millions of Users Information Compromised in Adidas Breach
News
Gentoo has their Github hacked
Tools
Raptor WAF 0.5 Released
Exploits
Cisco Adaptive Security Appliance Path Traversal
Exploits
HongCMS 3.0.0 SQL Injection
News
Bithumb Says They Have Recovered $14 Million In Stolen Crypto Currencies
News
Ticketmaster Releases Information Regarding Breach
Exploits
Liferay Portal < 7.0.4 Blind Server-Side Request Forgery
News
Citizens of Midwest City Oklahoma Banking and Credit Card Information Stolen After Utility Accounts Hacked
Tools
Tool Finally Released to Decrypt Thanatos Ransomware
Exploits
WordPress Plugin Comments Import & Export < 2.0.4 - CSV Injection
Exploits
Foxit Reader 9.0.1.1049 – Remote Code Execution
News
FlightRadar24 Hacked
News
$100 Smart Lock Tapplock Hacked in 2 Seconds by Pentesters
Exploits
rtorrent 0.9.6 – Denial of Service
Exploits
Microsoft Windows 10 – Child Process Restriction Mitigation Bypass
Exploits
Joomla! Component EkRishta 2.10 – ‘cid’ SQL Injection
Exploits
WordPress Plugin Pie Register < 3.0.9 - Blind SQL Injection
Exploits
Schools Alert Management Script – SQL Injection
Exploits
Joomla! Component EkRishta 2.10 – ‘username’ SQL Injection
Exploits
Canon PrintMe EFI – Cross-Site Scripting
Exploits
SearchBlox 8.6.7 – XML External Entity Injection
Exploits
CyberArk < 10 - Memory Disclosure
Exploits
GreenCMS 2.3.0603 – Cross-Site Request Forgery / Remote Code Execution
Exploits
GreenCMS 2.3.0603 – Cross-Site Request Forgery (Add Admin)
Exploits
Smartshop 1 – Cross-Site Request Forgery
Exploits
Smartshop 1 – ‘id’ SQL Injection
News
SingTel Routers Left Vulnerable To Attack Due To Open Ports
News
Buffalo Wild Wings Twitter Account Hacked
Exploits
Git < 2.17.1 - Remote Code Execution
News
FBI Warns That Information of 100,000 Homes Was Hacked
Exploits
NUUO NVRmini2 / NVRsolo – Arbitrary File Upload
Exploits
SQL Injection Vulnerability in Issue Trak <= 7.0 (Possibly applicable up to version 9.7)
Exploits
MyBB ChangUonDyU Plugin 1.0.2 – Cross-Site Scripting
Exploits
Pivotal Spring Java Framework < 5.0 - Remote Code Execution
Exploits
Facebook Clone Script 1.0.5 – ‘search’ SQL Injection
Exploits
Facebook Clone Script 1.0.5 – Cross-Site Request Forgery
Exploits
CloudMe Sync < 1.11.0 - Buffer Overflow (SEH) (DEP Bypass)
Exploits
Bitmain Antminer D3/L3+/S9 – Remote Command Execution
Tools
TOR Virtual Network Tunneling Tool 0.3.3.6
Exploits
Honeywell XL Web Controller – Cross-Site Scripting
News
Pakistani Military Hacks US and Their Partners Phones
News
Judge Rules @RealDonaldTrump Cannot Block Twitter Users
News
Malware Dubbed VPNFilter Takes Over 500,000 Routers
Exploits
WordPress Plugin Peugeot Music – Arbitrary File Upload
News
Pakistan accused for hacking Australian diplomats
News
Russia Suspected in Exploitation of 500,000 Cisco Routers to Attack Ukraine
Exploits
Easy File Uploader 1.7 – SQL Injection / Cross-Site Scripting
News
10k Accounts Exposed after TeenSafe App Flaw
News
Kaspersky Labs Identifies Flaw In Pet Trackers Exposing Infromation to Cyber Criminals
News
Malicious PHP Scripts Linked to Brain Food Botnet Injfect 2,400 Websites in a Week
Exploits
Zechat 1.5 – SQL Injection / Cross-Site Request Forgery
Exploits
PaulPrinting CMS Printing 1.0 – SQL Injection
Exploits
Nordex N149/4.0-4.5 – SQL Injection
Exploits
Merge PACS 7.0 – Cross-Site Request Forgery
Exploits
mySCADA myPRO 7 – Hard-Coded Credentials
Uncategorized
What is Computer Forensics?
Exploits
Infinity Market Classified Ads Script 1.6.2 – Cross-Site Request Forgery
Exploits
Nanopool Claymore Dual Miner 7.3 – Remote Code Execution
Exploits
RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scriptin
Exploits
Multiplayer BlackJack Online Casino Game 2.5 – Persistent Cross-Site Scripting
Exploits
MyBB Admin Notes Plugin 1.1 – Cross-Site Request Forgery
Exploits
WordPress Plugin Metronet Tag Manager 1.2.7 – Cross-Site Request Forgery
Exploits
NodAPS 4.0 – SQL injection / Cross-Site Request Forgery
Exploits
Intelbras NCLOUD 300 1.0 – Authentication bypass
Exploits
Powerlogic/Schneider Electric IONXXXX Series – Cross-Site Request Forgery
News
Twitter exposes passwords change them now
Exploits
IceWarp Mail Server Directory Traversal
News
GitHub bug exposed some users passwords in plain text
Tools
Wireshark Analyzer 2.6.0
Tutorials
Capture Password from HTTP Packet
Tools
Linux Exploit Suggester
Tutorials
Domain Isolation
Uncategorized
AI Revolution by Steven Levy Reading Response
Tools
Bash Apache Virtual Host Creation Script
Tutorials
Introduction to Metasploit & MSF Workspaces
Tools
Using MacChanger on Linux
Tutorials
Using GNU Privacy Guard (GPG)

Latest Tools

Arissploit Pentest Framework
Tools
July 27, 2020
|
No Comments

Arissploit Pentest Framework

About Arissploit Framework Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple

Latest Exploits

Exploits
July 24, 2020
|
No Comments

FTPDummy! 4.80 Local Buffer Overflow

# Exploit Title: FTPDummy! 4.80 - Local Buffer Overflow (SEH) # Date: 2020-07-22 # Author: Felipe Winsnes # Software Link: http://www.dummysoftware.co

Latest Tutorials

FOLLOW US