bcoles
Unfortunately the [src-url](https://raw.githubusercontent.com/briskets/CVE-2021-3493/main/exploit.c) is a reupload. The original exploit is embedded in the advisory page. There's no direct link. ``` user@ubuntu:~/Desktop$ gcc overlayfs.c user@ubuntu:~/Desktop$ ./a.out bash-5.0# id uid=0(root) gid=0(root) groups=0(root),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),120(lpadmin),131(lxd),132(sambashare),1000(user),1002(wireshark)...
* Moved to be with the other 2017 era exploits. * Fix exploit-db URL to use the correct format. * Add author
Fixes #92
It would be nice to have a `--passive` mode, that disables all modules which interact with the target domain, and enables all modules which do not interact with the target...
An example implementation in Python: https://github.com/PaulSec/API-Email-Format Usage: ``` from emailFormatAPI import EmailFormatAPI res = EmailFormatAPI({'verbose': True}).get('example.com') print res ```
Here's an extremely rudimentary naive fuzzer for `hexapdf` : ```ruby #!/usr/bin/env ruby #################################################### # ------------------------------------------------ # # Fuzz HexaPDF Ruby gem with mutated PDF files # # ------------------------------------------------ # #...
Here's an extremely rudimentary naive fuzzer for `docx` : ```ruby #!/usr/bin/env ruby ################################################### # ----------------------------------------------- # # Fuzz docx Ruby gem with mutated DOCX files # # ----------------------------------------------- # #...
The `Ftpd::DiskFileSystem` class suffers from a denial of service vulnerability and local file system path disclosure issues when the local file system path supplied in the constructor to be used...
The SSRF Proxy library for Ruby supports HTTPS requests, however the server is not a HTTPS proxy and does not support SSL/TLS tunneling. I have a somewhat-working implementation, however it's...