POC for CVE-2024-36401: RCE for GeoServer version prior to 2.25.1, 2.24.3 and 2.23.5 of GeoServer. This POC is based on…
A vulnerable application made using node.js, express server and ejs template engine. This application is meant for educational purposes only.…
delve into CVE-2024-26229, a critical security vulnerability identified within the csc.sys driver, pivotal in handling I/O control codes. This issue…
In this article, we delve into the intricacies of a recently discovered vulnerability in Google Chrome, identified as CVE-2023-4427. Discovered…
We dissect the exploit's mechanisms, shedding light on how it manipulates memory through io_uring. By delving into the technical nuances,…
This article delves into a critical vulnerability in Splunk, identified as CVE-2023-46214. It provides a detailed analysis and a Proof…
Do you need to filter Nessus scan results and zero in on exploitable vulnerabilities? When you're on a penetration test…
ADCSKiller is a Python-based tool designed to automate the process of discovering and exploiting Active Directory Certificate Services (ADCS) vulnerabilities.…
Ivanti has just put out a warning about CVE-2023-38035. The vulnerability has been added to CISA KEV and is called…
Windows Event Log Analyzer wants to be the Swiss Army knife of Windows event logs. At the moment, WELA's best…