lj4w's repositories
CVE-2019-11932
Simple POC for exploiting WhatsApp double-free bug in DDGifSlurp in decoding.c in libpl_droidsonroids_gif
CVE-2020-11932
Double-Free BUG in WhatsApp exploit poc.
CVE-2020-13942-POC-
CVE-2020-13942 POC + Automation Script
CVE-2020-3452
[CVE-2020-3452] Cisco Adaptive Security Appliance (ASA) & Cisco Firepower Threat Defense (FTD) Web Service Read-Only Directory Traversal
CVE-2021-3156
Exploit for Sudo heap overflow (CVE-2021-3156) on Debain 10
CVE-2021-3157
Root shell PoC for CVE-2021-3156
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
SUDO_KILLER
A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.
Veil
Veil 3.1.X (Check version info in Veil at runtime)
Ventoy
A new bootable USB solution.