Mesut Cetin's repositories
CVE-2024-0204
This script exploits the CVE-2024-0204 vulnerability in Fortra GoAnywhere MFT, allowing the creation of unauthorized administrative users, for educational and authorized testing purposes.
CVE-2024-20767
Proof of Concept for CVE-2024-20767. Arbitrary file read from Adobe ColdFusion
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
CVE-2023-25157
CVE-2023-25157 - GeoServer SQL Injection - PoC
CVE-2023-27997-check
Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing
cve-2023-3519-citrix-scanner
Citrix Scanner for CVE-2023-3519
CVE-2023-51467
A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass
DavRelayUp
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).
h2tinker
Low-level HTTP/2 client implementation for experimenting with the protocol.
Hangman
A hangman game made using python and flask
KeeThief
Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory.
LinkedInDumper
Python 3 script to dump company employees from LinkedIn API
portswigger-labs
Python scripts to solve PortSwigger Labs and learn web security.
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
scraper
Efficiently extract valuable download links from websites and subdomains using an advanced bash script. Streamline your web scraping process by excluding URLs with popular image extensions and mailto links, ensuring focused and targeted results.
WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
wireshark-ssl-decrypt
Decrypting SSL traffic with WireShark for security professionals and penetration tester.