serundengsapi's repositories
web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
subt
SubT is a tool to check if a subdomain is vulnerable to subdomain takeover. It uses `subfinder` to search for subdomains, `dig` to check CNAME, and `curl` to check status code.
o-es-ce-pe
OSCP Cheat Sheet
CVE-2024-6387
CVE-2024-6387 : Vulnerability Detection tool for regreSSHion Remote Unauthenticated Code Execution in OpenSSH Server
cti-stix-common-objects
OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://github.com/oasis-open/cti-stix-common-objects
CVE-2024-34102
POC for CVE-2024-34102. A pre-authentication XML entity injection issue in Magento / Adobe Commerce.
afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
CVE-2024-30078-
CVE-2024-30078 Detection and Command Execution Script
CVE-2024-4577-
PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
ransomwatch
the transparent ransomware claim tracker 🥷🏼🧅🖥️
telemetry-dashboard
Web-frontend for aggregated telemetry data
chatbot-ui
AI chat for every model.
chaos-client
Go client to communicate with Chaos DB API.
CVE-2024-4577---
PHP CGI Argument Injection vulnerability
bbscope
Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
CVE-2024-4577
CVE-2024-4577 is a critical vulnerability in PHP affecting CGI configurations, allowing attackers to execute arbitrary commands via crafted URL parameters.
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
graphw00f
graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
CVE-2024-24919-Bulk-Scanner
CVE-2024-24919 [Check Point Security Gateway Information Disclosure]
CVE-2024-24919
An Vulnerability detection and Exploitation tool for CVE-2024-24919
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
OSCP-Cheatsheet
OSCP Cheatsheet by Sai Sathvik
CVE-2024-4040
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
fuzzing-templates
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!