0x13337's repositories
AD-Attack-Defense
Active Directory Security For Red & Blue Team
awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
CVE-2018-15961
Unrestricted file upload in Adobe ColdFusion
exploitdb-papers
exploit-database-papers
GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
LinkFinder
A python script that finds endpoints in JavaScript files
nmap-vulners
NSE script based on Vulners.com API
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
PrestaShop-CVE-2018-19126
PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)
prototype-pollution-nsec18
Content released at NorthSec 2018 for my talk on prototype pollution
pwn2own2018
A Pwn2Own exploit chain
radare2book
r1 book transcription to r2
Security-Research
Exploits written by the Rhino Security Labs team
security_whitepapers
Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
udacity-nanodegrees
:mortar_board: List of Udacity Nanodegree programs with links to the free courses in their curricula
virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape
windowsblindread
A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system
ysoserial-modified
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.