快速搭建各种漏洞环境(Various vulnerability environment)
-
Updated
Oct 27, 2020 - Shell
The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States' National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security
快速搭建各种漏洞环境(Various vulnerability environment)
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
A script to automate privilege escalation with CVE-2023-22809 vulnerability
OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
patches for SNYK-JS-JQUERY-174006, CVE-2019-11358, CVE-2019-5428
Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.
Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
patches for SNYK-JS-JQUERY-565129, SNYK-JS-JQUERY-567880, CVE-2020-1102, CVE-2020-11023, includes the patches for SNYK-JS-JQUERY-174006, CVE-2019-11358, CVE-2019-5428
Just basic scanner abusing CVE-2020-3452 to enumerate the standard files accessible in the Web Directory of the CISCO ASA applicances.
Automated privilege escalation of the world's most popular Docker images.
CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion
System Security Checker is a bundle of small shell scripts to assess your computer security.