Exploitation Tools main menu
The OSCE³ (Offensive Security Certified Expert 3) and OSEE (Offensive Security Exploitation Expert) certifications are advanced qualifications in the field…
Kernel callbacks are essential components used by Endpoint Detection and Response (EDR) systems to monitor system events, such as process…
The Remote Lua Loader is a tool designed to exploit vulnerabilities in games built with the Artemis game engine, which…
Squid is a powerful RISC-V emulator designed specifically for vulnerability research and fuzzing. It leverages Ahead-of-Time (AOT) compilation instead of…
The Playstation 4 Save Mounter 1.3 is a utility designed to manage save data on the PS4, allowing users to…
CVE-2025-24071 is a critical vulnerability in Microsoft Windows File Explorer that allows attackers to capture NTLM hashed passwords without user…
KrbRelayEx is a sophisticated tool designed for performing Man-in-the-Middle (MitM) attacks by relaying Kerberos AP-REQ tickets. It is particularly useful…
CVE-2025-26319 is a critical vulnerability affecting FlowiseAI Flowise versions up to and including 2.2.6. This vulnerability allows attackers to perform…
The ps5-pup-decrypt tool is a utility designed to decrypt PlayStation 5 (PS5) firmware update files, known as PUP files. Developed…
简介 CVE-2025-24813 是一个影响 Apache Tomcat 的远程代码执行(RCE)漏洞,允许攻击者通过发送一个 PUT 请求上传恶意的序列化会话文件,并通过 GET 请求触发反序列化,从而在服务器上执行任意代码。该漏洞已在野外被利用,且其利用条件相对简单,只需 Tomcat 使用文件存储会话且支持部分 PUT 请求即可。 脚本功能 CVE-2025-24813-PoC 脚本主要用于检测 Apache Tomcat 是否存在此漏洞。它支持批量检测和单个检测两种模式。…