Penetration Tester by day Web Security Researcher by night In love with Web (In)Security
badmoodle. Moodle community-based vulnerability scanner
63Burp-IISTildeEnumerationScanner. Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
62thc-ssl-dos_mod. A fork of thc-ssl-dos that supports all SSL/TLS implementations, UDP (using DTLS), SOCKS5 proxy and both renegotiation and reconnect attacks. It also includes a docker lab to test the exploit.
17XXE-OOB-Exfiltrator. XXE Out-Of-Band multi-line content exfiltrator via external DTD using self-hosted HTTP and FTP servers
7GL.iNet-Multiple-Vulnerabilities. Exploits for GL.iNet CVE-2023-46454, CVE-2023-46455 and CVE-2023-46456
3Yellowfin-Multiple-Vulnerabilities. Advisory about multiple vulnerabilities discovered in Yellowfin before 9.6.1
1Typecho-Multiple-Vulnerabilities. Exploits for Typecho CVE-2024-35538, CVE-2024-35539 and CVE-2024-35540
1