-
Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.
payloads
-
Exploits 🚨 Log4Shell Payloads Collection
A curated and annotated collection of Log4Shell / Log4J exploitation payloads targeting: CVE-2021-44228: The original and most critical Log4j vulnerability. Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log...- dEEpEst
- Thread
- collections payloads
- Replies: 2
- Forum: Exploit Development & Bugs
-
Reverse Engineering Greenline - Unpacker and Config Extractor for managed Redline Stealer payloads v1.1 Fixed
How to use Greenline.exe <path> [--config-only] Greenline will by default unpack Redline Stealers string obfuscation, if you only want the config use the --config-only argument after the path to your binary. Features String deobfuscation Greenline will unpack string obfuscation like...- itsMe
- Thread
- and config extractor fixed for greenline managed payloads redline stealer unpacker v1.1
- Replies: 0
- Forum: Cracking Tools
-
Ox4Shell: Deobfuscate Log4Shell payloads
Deobfuscate Log4Shell payloads with ease. Since the release of the Log4Shell vulnerability (CVE-2021-44228), many tools were created to obfuscate Log4Shell payloads, making the lives of security engineers a nightmare. This tool intends to unravel the true contents of obfuscated Log4Shell...- itsMe
- Thread
- deobfuscate log4shell ox4shell: payloads
- Replies: 0
- Forum: Pentesting
-
XSS Payloads List 200+
Hidden content Hidden content- LSDeep
- Thread
- 200+ list payloads xss
- Replies: 0
- Forum: Pentesting
-
LAZYPARIAH: generating reverse shell payloads on the fly
LAZYPARIAH is a simple and easily installable command-line tool written in pure Ruby that can be used during penetration tests and capture-the-flag (CTF) competitions to generate a range of reverse shell payloads on the fly. The reverse shell payloads that LAZYPARIAH supports include (but are...- itsMe
- Thread
- fly lazypariah: payloads reverse shell
- Replies: 0
- Forum: Pentesting
-
Phyton APKBleach - Obfuscate Android Payloads
A central version of ApkBleach on a web page to eliminate install issues of apkbleach.py accross differing systems. About ApkBleach was developed specifically to obfuscate android payloads generated by the metasploit-framework in attempts to evade detection. The obfuscation that takes place...- itsMe
- Thread
- android apkbleach obfuscate payloads
- Replies: 0
- Forum: Java & Python Development
-
php-jpeg-injector: Injects php payloads into jpeg images
Use Case You have a web application that runs a jpeg image through PHP's GD graphics library. Description This script injects PHP code into a specified jpeg image. The web application will execute the payload if it interprets the image. Make sure your input jpeg is uncompressed! The new...- itsMe
- Thread
- images injects into jpeg payloads php php-jpeg-injector:
- Replies: 0
- Forum: Pentesting
-
CSRFER - Tool to generate csrf payloads based on vulnerable requests
Hidden content- itsMe
- Thread
- based csrf csrfer generate payloads requests tool vulnerable
- Replies: 0
- Forum: Pentesting
-
xeca v0.3 - creates encrypted PowerShell payloads for offensive purposes
xeca is a project that creates encrypted PowerShell payloads for offensive purposes. Creating position independent shellcode from DLL files is also possible. How It Works Identify and encrypt the payload. Load encrypted payload into a powershell script and save to a file named...- itsMe
- Thread
- creates encrypted for offensive payloads powershell purposes v0.3 xeca
- Replies: 0
- Forum: Pentesting
-
Xeca: creates encrypted PowerShell payloads for offensive purposes
xeca xeca is a project that creates encrypted PowerShell payloads for offensive purposes. Creating position independent shellcode from DLL files is also possible. How It Works Identify and encrypt the payload. Load encrypted payload into a powershell script and save to a file named...- itsMe
- Thread
- creates encrypted for offensive payloads powershell purposes xeca:
- Replies: 0
- Forum: Pentesting
-
EXXX EVASION | Metasploit Antivirus Evasion | Fully Undetectable Payloads
Generating fully undetectable meterpreter custom payloads using msfvenom and custom loader template. It bypasses the latest Windows Defender running on Windows 10 Pro 1903 ( Build 18363.693 ) with all updates available till 16th of March, 2020. Features There are 2 modules in this tool: ...- itsMe
- Thread
- antivirus evasion exxx fully payloads undetectable
- Replies: 0
- Forum: Hacking Tools
-
Payloads All The Things - A list of useful payloads
A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques. I pull requests 🙂 Every section contains the following files, you can use the _template_vuln folder to create a new chapter: README.md - vulnerability description...- itsMe
- Thread
- all list payloads things useful
- Replies: 0
- Forum: Exploit Development & Bugs
-
C/C++ Pwndrop - Allowing To Easily Upload And Share Payloads
Pwndrop - Self-Deployable File Hosting Service For Red Teamers, Allowing To Easily Upload And Share Payloads Over HTTP And WebDAV With pwndrop you can: Upload and immediately share multiple files using your own private VPS, using drag & drop. Decide to make files available or...- itsMe
- Thread
- allowing and easily payloads pwndrop share upload
- Replies: 0
- Forum: Educational Resources
-
XSS Fuzzer: generates XSS payloads based on user-defined vectors and fuzzing lists
XSS Fuzzer is a simple application written in plain HTML/JavaScript/CSS which generates XSS payloads based on user-defined vectors using multiple placeholders which are replaced with fuzzing lists. It offers the possibility to just generate the payloads as plain-text or to execute them inside...- itsMe
- Thread
- and based fuzzer: fuzzing generates lists payloads user-defined vectors xss
- Replies: 0
- Forum: Pentesting
-
Insanity Framework - Generate Payloads and Control Remote Machines. [Discontinued]
Insanity-Framework THIS PROJECT ARE CLOSED NOW - FEEL FREE TO CONTINUE IT Copyright 2017 Insanity Framework (IF) 2.0 END Written by: * Alisson Moretto - 4w4k3 Special Thanks to Thomas Perkins - Ekultek Insanity Payload consists of encrypting your code and decrypting it in memory, thus...- dEEpEst
- Thread
- and control discontinued framework generate insanity machines. payloads remote
- Replies: 0
- Forum: Pentesting
-
GodOfWar - Malicious Java WAR Builder With Built-In Payloads
. hhh hhhhhhh hhhhhhhh hhhhhhhh+ hhhhhhhh' hhhhhhhh...- itsMe
- Thread
- builder built-in godofwar java malicious payloads war
- Replies: 0
- Forum: Pentesting
payloads
