cclauss
|
150110a96c
|
import string in uploadlfi.py
__string__ is used twice on line 13 but it is never imported.
|
2018-09-02 13:24:35 +02:00 |
|
Swissky
|
f612a91bb5
|
LFI via Upload (race condition) + Network Pivot nmap
|
2018-08-26 15:43:26 +02:00 |
|
Swissky
|
fe7314444c
|
Phar Wrapper - "unserialize"
|
2018-08-19 18:47:32 +02:00 |
|
Swissky
|
65654f81a4
|
Markdown formatting update
|
2018-08-12 23:30:22 +02:00 |
|
Swissky
|
b20cdde4d9
|
Adding soffensive's windowsblindread file
|
2018-08-03 17:56:29 +02:00 |
|
Swissky
|
76aefd9da2
|
Path traversal refactor + AD cme module msf/empire + IIS web.config
|
2018-07-07 12:04:55 +02:00 |
|
Swissky
|
fea88a5738
|
SVG XSS + SSRF enclosed alphanumerics
|
2017-11-19 14:01:36 +01:00 |
|
Swissky
|
f740d8e825
|
MySQL - Code exec
|
2017-11-09 09:05:50 +01:00 |
|
Swissky
|
edd5f3601f
|
File inclusion - more intruders
|
2017-10-21 16:48:17 +02:00 |
|
Swissky
|
87ef554e40
|
LFI to RCE via input:// stream
|
2017-09-24 00:37:56 +02:00 |
|
Swissky
|
3e6043be32
|
LFI - PHPSessid technique, more bypass and files
|
2017-09-24 00:32:55 +02:00 |
|
Swissky
|
1ca215d5d7
|
Multiple update - LFI/RCE via phpinfo, Struts2 v2
|
2017-09-13 23:55:29 +02:00 |
|
Swissky
|
c36d31ec5d
|
LFI via /proc/*/fd + upload
|
2017-08-15 02:37:09 +02:00 |
|
Swissky
|
dad26ce5e5
|
More Burp Intruder file - SQLi + Path traversal + XSS
|
2017-08-06 01:12:41 +02:00 |
|