
WLT3Serial is an Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners (as outlined HERE). Requires third-party dependencies ysoserial and wlthint3client. Advantages/Disadvantages compared to…

How it Works Dex-Oracle? Oracle takes Android apps (APK), Dalvik executables (DEX), and Smali files as inputs. First, if the input is an APK or…

Pip3line is a raw bytes manipulation utility, able to apply well known and less well known transformations from anywhere to anywhere (almost). Its main usefulness…

libinjection fuzzer is a tool logs found bypasses, valid blocked queries and rest of requests to file for future analysis. Database should be already set…

LEGAL DISCLAMER The author does not hold any responsibility about the bad use of this script, remember that attacking targets without prior concent its ilegal…

poodle-PoC is PoC explore the cryptography behind the attack, it can be assimilate to the MiTM. Poodle allow you to retrieve plaintext messages if the…

DBShield a Protects your data by inspecting incoming queries from your application server and rejecting abnormal ones. Databases Support: + DB2 + MariaDB + MySQL…

python_gdork_sqli is a python script is developed to show, how many vulnerables websites, which are laying around on the web. The main focus of the…