CVE-2019-19781

Simple tool for testing vulnerability to CVE 2019-19781

CVE-2019-19781 The intent of this project is to wrap up the tool published by CISA to test for vulnerably for CVE-2019-19781 See wwwus-certgov/ncas/current-activity/2020/01/13/cisa-releases-test-citrix-adc-and-gateway-vulnerability for the CERT announcement about the tool See the following for more information on the vulnerability: supportcitrixcom/article

IOCs for CVE-2019-19781

CVE-2019-19781_IOCs IOCs for CVE-2019-19781 citrixhoneypotnslookuptxt contains whois results for the IP addresses listed in ipstxt these were the addresses that showed up most frequently in the logs of the honeypot discussed here: wwwdigitalshadowscom/blog-and-research/cve-2019-19781-analyzing-the-exploit/

Test a host for susceptibility to CVE-2019-19781

check-cve-2019-19781 This utility determines if a host appears susceptible to CVE-2019-19781 Requirements Python versions 36 and above Note that Python 2 is not supported Installation From a release: pip install githubcom/cisagov/check-cve-2019-19781/releases/download/v102/cve_2019_19781-102-py3-none-anywhl From source: git clone githubcom/cisa

Citrix ADC Remote Code Execution

CVE-2019-19781 Citrix ADC Remote Code Execution python usage: python CVE-2019-19781py 1921683244 0x01 download NSVPX-ESX-130-4722_nc_64zip wwwcitrixcom/downloads/citrix-gateway/ configure static networ 0x02 nmap scan Scanning 1921683244 [65535 ports] Discovered open port 80/tcp on 1921683244 Discovered open port 22/tcp on 1921683244 Discove

Awesome Stars A curated list of my GitHub stars! Generated by starred Contents Arduino C C# C++ CSS Clojure CoffeeScript Dockerfile Eagle Emacs Lisp Go HTML Java JavaScript Jupyter Notebook Lua Makefile Others PHP PowerShell Python QML Rust Shell Swift TeX TypeScript Arduino ESP8266Tweet - Twitter client for ESP8266 C hashcat - World's fastest and most advanced pa

Audit Guide for the Citrix ADC Vulnerability CVE-2019-19871. Collected from multiple sources and threat assessments. Will be updated as new methods come up.

Update 1-22-2020 There is now a tool from FireEye that will help scan these items below The key to this is that you need to have enough logs to go back to 1-9-2020 to have a chance to see what was done beyond the exploit was ran If it finds XML payload files then you need to use the information below to make a decision on what action to take wwwfireeyecom/blog/pr

This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.

CVE-2019-19781 This was only uploaded due to other researchers publishing their code first We would have hoped to have had this hidden for awhile longer while defenders had appropriate time to patch their systems We are all for responsible disclosure, in this case - the cat was already out of the bag Exploits: CVE-2019-19781 Citrixmash (CVE-2019-19781 exploit) root@stronghol

CVE-2019-19781 CVE-2019-19781 Module for Router Scan Project How To Use prepare pip3 install ipcalc,requests usage python3 scannerpy Copyright some part of this repository that send tcp response is partly forked from trustedsec/cve-2019-19781 with some changes for APIs of Router Scan Project

Exploit Citrix - Remote Code Execution Bug: CVE-2019-19781 This tool is ported to Golang from githubcom/trustedsec/cve-2019-19781/blob/master/citrixmashpy Writeup and mitigation: wwwtrustedseccom/blog/critical-exposure-in-citrix-adc-netscaler-unauthenticated-remote-code-execution/ Forensics and IoC Blog: wwwtrustedseccom/blog/netscaler-remote-code

CVE-2019-19781 To use this scanner goto cve-2019-19781azurewebsitesnet Features Scan for IPs/Hostnames that are exposted to CVE 2019 19781 Scan offline database for leaked wildcard certificates Credits This project is based on this project: Citrixmash v01 - Exploits the Citrix Directory Traversal Bug: CVE-2019-19781 Tool Written by: Rob Simon and Dave Kennedy Contr

Here a list of useful information about threats and scams related to Coronavirus Disease 2019 (COVID-19)

COVID-19 Response Covid19 Response will share tools and resources for security incident response and cyber defence, aimed to help systems adminstrators or anyone to protect against threats using desease outbreak as a vector cve-2019-19781 - Check citrix gateway that are vulnerable to CVE-2019-19781 threatlist - Hashes, files, phishing, etc Useful Links Windows Defender AT

CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit

CVE-2019-19781 Remote Code Execution (RCE) in Citrix Application Delivery Controller and Citrix Gateway A vulnerability has been identified in Citrix Application Delivery Controller (ADC) formerly known as NetScaler ADC and Citrix Gateway formerly known as NetScaler Gateway that, if exploited, could allow an unauthenticated attacker to perform arbitrary code execution EDIT:

My Citrix ADC NetScaler CVE-2019-19781 Vulnerability DFIR notes.

Based on a Splunk perspective Below resources show that ingesting your logs is essential from proper analysis of the Indicators Of Compromise Never waste a good crisisingest all the logs Impact / Root Cause: Remote pre-auth arbitrary command execution due to logic vuln ie reliable execution possible Some Resources supportcitrixcom/article/CTX267027 www

Citrix ADC Remote Code Execution

CVE-2019-19781 Citrix ADC Remote Code Execution python usage: python CVE-2019-19781py 1921683244 0x01 download NSVPX-ESX-130-4722_nc_64zip wwwcitrixcom/downloads/citrix-gateway/ configure static networ 0x02 nmap scan Scanning 1921683244 [65535 ports] Discovered open port 80/tcp on 1921683244 Discovered open port 22/tcp on 1921683244 Discove

Citrix Unauthorized Remote Code Execution Attacker - CVE-2019-19781

Citrix Unauthorized Remote Code Execution Attacker - CVE-2019-19781 References: blogfox-itcom/2020/07/01/a-second-look-at-cve-2019-19781-citrix-netscaler-adc/ Bypassing: 1 - Deleted / Modified scripts at: /vpn//vpns/portal/scripts/* 2 - Forward Slash ("/") issues after perl commnad injection (template injection) attack

a script to look for CVE-2019-19781 Vulnerability within a domain and it's subdomains

citrixvulncheck A script to look for CVE-2019-19781 Vulnerability within a domain and it's subdomains

All Working Exploits

Remote Code Execution Exploit (CVE-2019-19781)- Citrix Application Delivery Controller & Gateway Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ] Usage : bash CVE-2019-19781sh IP_OF_VULNURABLE_HOST COMMAND_TO_EXECUTE eg : bash CVE-2019-19781sh XXXXXXXX 'cat /etc/passwd' Live Demo of Exploiting

A fast multi threaded scanner for Citrix ADC (NetScaler) CVE-2019-19781 - Citrixmash / Shitrix

CVE-2019-19781 citrixmash scanner A multithreaded scanner for Citrix appliances that are vulnerable to CVE-2019-19781 The scanner does not attempt to compromise/exploit hosts and avoids downloading any sensitive content A HEAD request is used to determine if a target is vulnerable False positives are reduced by verifying a specific value in the content-length header response

Detect-CVE-2019-19781 Set the $IP variable to your own server to detect if its vulnerable

Citrix ADC scanner (CVE-2019-19781) using hosts retrieved from Shodan API.

CVE-2019-19781 Automated script for Citrix ADC scanner (CVE-2019-19781) using hosts retrieved from Shodan API You must have a Shodan account to use this script Click here if you don't have Shodan account Installation Install dependencies # CentOS & Fedora yum install git python3 -y # Ubuntu & Debian apt install git python3 python3-pip

CVE-2019-19781漏洞批量测试脚本

CVE-2019-19781漏洞批量测试脚本

My working exploit script for Shitrix (CVE-2019-19781)

Shitrix-CVE-2019-19781 My working approach to exploiting Shitrix Updated 21st July, 2020 - now supports multi-worded commands and forward slashes You need curl >= 7420 Call it with, eg: /shitrixsh target port ls -al

Automated script for Citrix ADC scanner (CVE-2019-19781) using hosts retrieved from Shodan API. You must have a Shodan account to use this script.

CVE-2019-19781 Automated script for Citrix ADC scanner (CVE-2019-19781) using hosts retrieved from Shodan API You must have a Shodan account to use this script Click here if you don't have Shodan account Installation Install dependencies # CentOS & Fedora yum install git python3 -y # Ubuntu & Debian apt install git python3 python3-pip

URL collection from browsing twitter

URL collection from browsing twitter Coronavirus COVID-19 (2019-nCoV) ephemera-miscellany/[ShmooCon 2018] Listing the 1337 - Adventures in Curating HackerTwitter's Institutional Knowledge (@hexwaxwing + @DanielGallagher)pdf at master · 1337list/ephemera-miscellany · GitHub GitHub - felixgr/secure-ios-app-dev: Collection of the most common vulnerabilities f

CVE-2019-19781 支持批量检测 Usage: python CVE-2019-19781py 检测目标URL，需在脚本当前目录下创建：urltxt urltxt，一行一个： xxx:port/ xxx:port/ 输出： 存在漏洞链接：restxt 错误链接：logtxt

citrix-vuln-checker run the script in your terminal to check if your CITRIX SERVER is vulnerable to the CVE-2019-19781

citrix adc rce

Citrix_CVE-2019-19781 Citrix ADC Remote Code Execution

Automated forensic script hunting for cve-2019-19781

CVE-2019-19781-Forensic Note : My advice is now to use the official tool published by fireeye & citrix : githubcom/fireeye/ioc-scanner-CVE-2019-19781 This little script was created to help security analyst to discover traces of successful CVE-2019-19781 exploits on their systems Feel free to fork and improve ! You can find an example of output on a compromised

Citrix ADC (NetScaler) Honeypot. Supports detection for CVE-2019-19781 and login attempts

Citrix ADC (NetScaler) Honeypot Detects and logs payloads for CVE-2019-19781 (Shitrix / Citrixmash) Logs failed login attempts Serves content and headers taken from real appliance in order to increase chance of indexing on search engines (eg google, shodan etc) Installation Precompiled Precompiled Linux (x64) package available here mkdir citrix-honeypot cd citrix-honeypot

Check your website for CVE-2019-19781 Vulnerable

CVE-2019-19781-Checker Check your website for CVE-2019-19781 Vulnerable #VISIT citrix-checkercom TO CHECK IF YOU ARE VULNERABLE FOR CVE-2019-19781 PLEASE USE OUR CHECKER TWO TIMES TO BE SURE This website gives you the results if your service is vulnerable for CVE-2019-19781 There is a responder policy to mitigate the issue until there is a permanent fix To apply the

A Citrix Netscaler honeypot

Honeypot for CVE-2019-19781 (Citrix ADC) Detect and log CVE-2019-19781 scan and exploitation attempts Based on MalwareTech's Citrix honeypot but heavily rewritten Prerequisites openssl (used only once, to create a self-signed HTTPS certificate) a working MySQL server (only if you use the MySQL output plugin) Usage Check the installation document for more informatio

Repository for penetration testing tools

Pentest-Detections Repository for penetration testing tools WannaCry_NotPetya_FastDetect : Vulnerability scanner for MS17-010 IPv4, IPv6 compatible Very fast and flexible Citrix_CVE-2019-19781 : Vulnerability scanner for Citrix CVE-2019-19781 Very fast and flexible

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

CVE-2019-19781 Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ] Usage : bash CVE-2019-19781sh IP_OF_VULNURABLE_HOST COMMAND_TO_EXECUTE eg : bash CVE-2019-19781sh XXXXXXXX 'cat /etc/passwd' Reference : supportcitrixcom/article/CTX267027 nvdnistgov/vuln/detail/CVE-2019-19781 https:/

CVE-2019-19781 Attack Triage Script

CVE-2019-19781 CVE-2019-19781 Attack Triage Script The script can be run on your affected Citrix ADC devices to assist in determining if a compromise has occured It will quicky capture any associated commands or files that were used as part of the attack (unless cleanup has occured): $ /CVE-2019-19781-Triagesh Disclaimer: Best efforts were made to test the script provided, h

Indicator of Compromise Scanner for CVE-2019-19781

Indicator of Compromise Scanner for CVE-2019-19781 This repository contains a utility for detecting compromises of Citrix ADC Appliances related to CVE-2019-19781 The utility, and its resources, encode indicators of compromise collected during FireEye Mandiant investigations To learn more, please read the blog announcing this tool's release In summary the utility will:

Remote Code Execution Exploit (CVE-2019-19781)- Citrix Application Delivery Controller & Gateway Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ] Usage : bash CVE-2019-19781sh IP_OF_VULNURABLE_HOST COMMAND_TO_EXECUTE eg : bash CVE-2019-19781sh XXXXXXXX 'cat /etc/passwd' Live Demo of Exploiting

Gather a list of Citrix appliances in a country / state pair, and check if they're vulnerable to CVE-2019-19781

shitsniffer Gather a list of Citrix appliances in a country / state pair, and check if they're vulnerable to CVE-2019-19781 Results are output as JSON which can be wrangled quite nicely into a meaningful PowerBI report It does this by querying Shodan for all results in a particular country matching a search string By default, it searches country:AU has_ssl:true with the

Shitrix : CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit

CVE-2019-19781 Simple POC to test if your Citrix ADC Netscaler is vulnerable to CVE-2019-19781 Usage : python <TARGET> <TARGETPORT> <CMD> This is proxified by default on tor default port --> 127001:9050 You'll need PySocks, requests and urllib3 Security advisory supportcitrixcom/article/CTX267027

This Is just My Personal Note For Fast-IR

DFIR-Note This Is just My Personal Note For Fast-IR What are the Most Tragted Servers By the Adversy and Why : 1-SCCM is a platform that allows for an enterprise to package and deploy operating systems, software, and software updatesIf you can gain access to SCCM, it makes for a great attack platform It heavily integrates Windows PowerShell, has excellent network visibility,

Search data for trickiness and obfuscation.

trickt Finds and converts obfuscated strings into a human readable form Install $ pip3 install trickt Run Searching individual strings I refer to obfuscation as trickiness because I'm a child at heart trickt outputs strings as byte strings so you can see if there are goofy characters visually You can pass a file path to read and decode or decode a string directly Base6

This is a repository with links Python for Web Application

The Python Web Apps Guide A Python repository to facilitate studies [WARNING] The links cited here were extracted from various sites and are for study use, I am sharing them so that as well as I can learn, I hope I have not infringed any copyright; and if your website, repository or any other link is here and the owner would not like it to be, please contact us so you can wit

Jupyter notebook to help automate some of the forensic analysis related to Citrix Netscalers compromised via CVE-2019-19781

Citrix Analysis Notebook A jupyter notebook to aid in automating some of the forensic analysis related to Citrix Netscaler hosts compromised via CVE-2019-19781 For help retrieving artifacts to examine see this Citrix triage script All notes/suggestions are welcome Feel free to submit pull requests or issues Disclaimer: Not intended to be a be-all end-all solution, just ther

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

CVE-2019-19781 Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ] Usage : bash CVE-2019-19781sh IP_OF_VULNURABLE_HOST COMMAND_TO_EXECUTE eg : bash CVE-2019-19781sh XXXXXXXX 'cat /etc/passwd'

批量概念驗證用

CVE-2019-19781 批量概念驗證用 使用限制 1使用前資料夾內需包含"datatxt"檔案，內容為19216810/24\n 19216820/24\n 2僅在linux下執行， python3 CVE-2019-19781-test_batapy 3若可成功執行並發現漏洞，匯出於"CVE-2019-19781txt"

Detectar vulnerabilidades de Path traversal con nmap

nmap simples script para nmap para detectar Path Traversal Uso: Por ejemplo: nmap -Pn -p443 -sVC --script=CVE-2019-19781nse

修改的poc，适用于python3

CVE-2019-19781-poc 修改的poc，适用于python3 python3 CVE-2019-19781py examplecom

CVE-2019-19781 bash exploit

citrixsh CVE-2019-19781 bash exploit using : bash citrixsh $domaincom Cyber-WarriorOrg / AKINCILAR / mit

CVE-2019-19781 Citrix RCE

CVE-2019-19781 Citrix ADC Remote Command Execution Reference: wwwexploit-dbcom/exploits/47901

Citrix Netscaler RCE

CVE-2019-19781 Citrix Netscaler RCE

A small collection of network traffic packet captures

pcap A small collection of network traffic packet captures CVE-2019-19781 Added on 2020-01-14 to host PCAP referenced in the "Rough Patch: I Promise It'll Be 200 OK" blog: First PCAP file - GET request for exploit scanning - checking conf file for a 200 OK response Second PCAP file - POST request exploiting the vulnerability using TrustedSec's publicly-ava

Citrix-CVE-2019-19781

Detect and log CVE-2019-19781 scan and exploitation attempts.

Honepot for CVE-2019-19781 (Citrix ADC) Detect and log CVE-2019-19781 scan and exploitation attempts Requirements: python3 openssl Usage: Clone repo: git clone githubcom/MalwareTech/CitrixHoneypotgit CitrixHoneypot && cd CitrixHoneypot Make ssl and logs directory: mkdir logs ssl Generate self signed SSL certificate: openssl req -newkey rsa:2048 -no

This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11510.

check-your-pulse This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11510 The Cybersecurity and Infrastructure Security Agency (CISA) has seen many organ izations breached despite patching their appliance because of Active Directory credentials (to include Domain Admin) harvested prior to

Critical CVE's in last 5 years. CVE Exploits.

Common-Vulnerability-Exposure-CVE- Critical CVE's in last 5 years CVE Exploits 1 CVE-2014-0160 - Heartbleed The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet SSL/TLS provides communica

AD-Pentesting-Tools Pentest-Tools General usefull Powershell Scripts AMSI Bypass restriction Bypass Payload Hosting Network Share Scanner Lateral Movement Reverse Shellz POST Exploitation Pivot Backdoor finder Persistence on windows Web Application Pentest Framework Discovery Framework Scanner / Exploitation Web Vulnerability Scanner / Burp Plugins Network- / Service-level Vul

CVEs enumerated by FireEye and that should be addressed to limit the effectiveness of leaked the Red Team tools CVE-2019-11510 – pre-auth arbitrary file reading from Pulse Secure SSL VPNs - CVSS 100 CVE-2020-1472 – Microsoft Active Directory escalation of privileges - CVSS 100 CVE-2018-13379 – pre-auth arbitrary file reading from Fortinet Fortigate SSL VPN

Pentest-Tools General usefull Powershell Scripts AMSI Bypass restriction Bypass Payload Hosting Network Share Scanner Lateral Movement Reverse Shellz POST Exploitation Pivot Backdoor finder Persistence on windows Web Application Pentest Framework Discovery Framework Scanner / Exploitation Web Vulnerability Scanner / Burp Plugins Network- / Service-level Vulnerability Scanner C

vFeed CVEs Vulnerability Indicators that should be addressed to limit the effectiveness of the Leaked FireEye Red Team tools CVE-2019-11510 – pre-auth arbitrary file reading from Pulse Secure SSL VPNs - CVSS 100 CVE-2020-1472 – Microsoft Active Directory escalation of privileges - CVSS 100 CVE-2018-13379 – pre-auth arbitrary file reading from Fortinet Forti

Useful Pentest tool links

Pentest-Tools Red-Team-Essentialss General usefull Powershell Scripts AMSI Bypass restriction Bypass Payload Hosting Network Share Scanner Lateral Movement Reverse Shellz POST Exploitation Pivot Backdoor finder Persistence on windows Web Application Pentest Framework Discovery Framework Scanner / Exploitation Web Vulnerability Scanner / Burp Plugins Network- / Service-level Vu

Awesome Hacking Awesome hacking is a curated list of hacking tools for hackers, pentesters and security researchers Its goal is to collect, classify and make awesome tools easy to find by humans, creating a toolset you can checkout and update with one command This is not only a curated list, it is also a complete and updated toolset you can download with one-command! You can

Pentest-Tools General usefull Powershell Scripts AMSI Bypass restriction Bypass Payload Hosting Network Share Scanner Lateral Movement Reverse Shellz POST Exploitation Pivot Backdoor finder Persistence on windows Web Application Pentest Framework Discovery Framework Scanner / Exploitation Web Vulnerability Scanner / Burp Plugins Network- / Service-level Vulnerability Scanner C

Pentest-Tools General usefull Powershell Scripts AMSI Bypass restriction Bypass Payload Hosting Network Share Scanner Lateral Movement Reverse Shellz POST Exploitation Pivot Backdoor finder Persistence on windows Web Application Pentest Framework Discovery Framework Scanner / Exploitation Web Vulnerability Scanner / Burp Plugins Network- / Service-level Vulnerability Scanner C

Awesome Hacking Awesome hacking is a curated list of hacking tools for hackers, pentesters and security researchers Its goal is to collect, classify and make awesome tools easy to find by humans, creating a toolset you can checkout and update with one command This is not only a curated list, it is also a complete and updated toolset you can download with one-command! You can

Awesome hacking is an awesome collection of hacking tools.

Awesome Hacking Awesome hacking is a curated list of hacking tools for hackers, pentesters and security researchers Its goal is to collect, classify and make awesome tools easy to find by humans, creating a toolset you can checkout and update with one command This is not only a curated list, it is also a complete and updated toolset you can download with one-command! You can

红方人员作战执行手册

红方人员实战手册 声明 Author : By klion Date : 2020215 寄语 : 愿 2020 后面的每一天都能一切安好 分享初衷 一来, 旨在为 "攻击" / "防御"方 提供更加全面实用的参考 还是那句老闲话 "未知攻焉知防", 所有单纯去说 "攻" 或者 "防" 的都是耍流氓, 攻守兼备

红方人员作战执行手册

红方人员实战手册 声明 Author : By klion Date : 2020215 寄语 : 愿 2020 后面的每一天都能一切安好 分享初衷 一来, 旨在为 "攻击" / "防御"方 提供更加全面实用的参考 还是那句老闲话 "未知攻焉知防", 所有单纯去说 "攻" 或者 "防" 的都是耍流氓, 攻守兼备

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

Templates are the core of nuclei scanner which power the actual scanning engine This repository stores and houses various templates for the scanner provided by our team as well as contributed by the community We hope that you also contribute by sending templates via pull requests and grow the list Template Directory ├── LICENSE ├── READMEmd ├── basic-dete

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

公开收集所用

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

渗透测试有关的POC、EXP、脚本、提权、小工具等，欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合 文章/书籍/教程相关 说明 请善用搜索[Ctrl+F]查找 IOT Device&Mobile

2020年发布到阿尔法实验室微信公众号的所有安全资讯汇总

欢迎关注阿尔法实验室微信公众号 20201231 [漏洞] 2020年增加的10个最严重的CVE blogdetectifycom/2020/12/30/top-10-critical-cves-added-in-2020/ Chromium RawClipboardHostImpl中的UAF漏洞 bugschromiumorg/p/chromium/issues/detail?id=1101509 [工具] Sarenka：OSINT工具，将来自shodan、censys等服务的数据集中在一处�

PoC in GitHub 2020 CVE-2020-0014 It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable This could lead to a local escalation of privilege with no additional execution privileges needed User action is needed for exploitationProduct: AndroidVersions: Android-80 Android-81 Android-9 Android-10Android ID: A-1286745

PoC auto collect from GitHub.

PoC in GitHub 2020 CVE-2020-0022 In reassemble_and_dispatch of packet_fragmentercc, there is possible out of bounds write due to an incorrect bounds calculation This could lead to remote code execution over Bluetooth with no additional execution privileges needed User interaction is not needed for exploitationProduct: AndroidVersions: Android-80 Android-81 Android-9 Andr

PoC in GitHub 2020 CVE-2020-0014 (2020-02-13) It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable This could lead to a local escalation of privilege with no additional execution privileges needed User action is needed for exploitationProduct: AndroidVersions: Android-80 Android-81 Android-9 Android-10Android

Here is a collection about Proof of Concepts of Common Vulnerabilities and Exposures, and you may also want to check out current Contents CVE-2011-2856 CVE-2011-3243 CVE-2013-2618 CVE-2013-6632 CVE-2014-1701 CVE-2014-1705 CVE-2014-1747 CVE-2014-3176 CVE-2014-6332 CVE-2014-7927 CVE-2014-7928 CVE-2015-0072 CVE-2015-0235 CVE-2015-0240 CVE-2015-1233 CVE-2015-1242 CVE-2015-1268 CV

Awesome CVE PoC A curated list of CVE PoCs Here is a collection about Proof of Concepts of Common Vulnerabilities and Exposures, and you may also want to check out awesome-web-security Please read the contribution guidelines before contributing This repo is full of PoCs for CVEs If you enjoy this awesome list and would like to support it, check out my Patreon page :