kuteminh11's repositories
dom-examples
Code examples that accompany various MDN DOM and Web API documentation pages
WMIHACKER
A Bypass Anti-virus Software Lateral Movement Command Execution Tool
proxyshell
A basic proxylogon scanner
request_smuggler
Http request smuggling vulnerability scanner
kenzer-templates
essential templates for kenzer
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
JSshell
JSshell - JavaScript reverse/remote shell
Apache-Solr-RCE
Apache Solr Exploits 🌟
h1domains
HackerOne "in scope" domains
CVE-2020-2551
Weblogic IIOP CVE-2020-2551
Bashfuscator
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
RdpThief
Extracting Clear Text Passwords from mstsc.exe using API Hooking.
Disclosures
Zero-day and N-day security vulnerability notes, analysis, and proof-of-concepts
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
sub.sh
Online Subdomain Detect Script
JS-Alpha
Funny project to create an encoder/obfuscator that converts any javascript code into a code that only consist of /[a-z().]/ characters
exploits-1
Pwn stuff.
xsleaks
A collection of browser-based side channel attack vectors.
AndroidMobilePentest101
Pentesting Android Application Course For Kids+ (English and Vietnamese edition)
tokenx_privEsc
with metasploit
wycheproof
Project Wycheproof tests crypto libraries against known attacks.
CVE-2019-0708
Scanner PoC for CVE-2019-0708 RDP RCE vuln