0xGabe

Grafana-LFI-8.x

Exploit grafana Pre-Auth LFI

Bootstrap_5-Study

Projects for study the framework Bootstrap

CVE-2021-38314

Exploit in python3 to explore CVE-2021-38314 in Redux Framework a wordpress plugin

CVE-2022-35914

Unauthenticated RCE in GLPI 10.0.2

git-check

Git-check is a tool in python 3 to check the git-exposed vulnerability on a website or list of websites.

IPFire-2.19-Auth-RCE

Exploit IPFire 2.19

OTRS-4.0.1-6.0.1

Basic_Brute

Basic Brute is a tool to do brute force in Basic Auth HTTP

EternalBlue-in-Python3

Exploit to Eternal Blue in python3

Apache-CVEs

Exploit created in python3 to exploit known vulnerabilities in Apache web server (CVE-2021-41773, CVE-2021-42013)

Apache-Tomcat-Default-Credentials

Apache Tomcat Default Credentials and a wordlist to brute admin login

API-STUDY

Assembly

cve-2021-45232-rce

Desec-Broken-Password

DNS-Recon

enumCRT

Favicon-Hash

FreeBSD-9.0-9.1-Privilege-Escalation

CVE-2013-2171

FTP-Brute

Gabriel-Lima232

headers

Beta projetct

hexIP

Tool created to convert IP and PORT in interfaces provide information about currently active TCP connections.

log4shell-vulnerable-app

Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.

Password-Brazil

php-8.1.0-backdoor

Sudo-1.8.27

Swagger-UI-XSS

werkzeug-debug-console-bypass

Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege escalation vector.

ysoserial-generator