Ashish Kunwar's repositories
CVE-2019-11932
double-free bug in WhatsApp exploit poc
CVE-2021-22986-Poc
This is a Poc for BIGIP iControl unauth RCE
Azorult-hunter
Azorult C&C hunter with bash onliner and nuclei yaml rule
CVE-2020-28018
exim use after free exploit and detection
CVE-2021-27850_POC
A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.
magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
CVE-2021-33564
Argument Injection in Dragonfly Ruby Gem exploit (backup)
Vulnerability_Scanner
C++ Vulnerability Scanner leveraging machine learning techniques.
alquist
Alquist is dialog manager allowing you to create intelligent bots for various purposes.
CVE-2021-21972
Proof of Concept Exploit for vCenter CVE-2021-21972
CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
geacon
Practice Go programming and implement CobaltStrike's Beacon in Go
JNDI
JNDI 注入利用工具
learnjavabug
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
poc
subtakeover poc
Poc-1
PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
pybeacon
A collection of scripts for dealing with Cobalt Strike beacons in Python
pycobalt
Cobalt Strike Python API
Trello_dorker
Used to scrape serpapi save results of original query and the links etc possible trello board disclosures are highlighted this is a test piece of sfotware it may suck use at your own caution lol
webshell
This is a webshell open source project