├── .github └── CODEOWNERS ├── .gitignore ├── Advantech └── advantech_iview_post_auth_sqli.py ├── Comodo └── Comodo Antivirus │ ├── ComodoInjectionCode │ ├── ComodoInjectionCode.sln │ └── ComodoInjectionCode │ │ ├── CisHeader.h │ │ ├── ComodoInjectionCode.vcxproj │ │ ├── ComodoInjectionCode.vcxproj.filters │ │ ├── InjectedCode.cpp │ │ ├── NtStuff.h │ │ ├── ReadMe.txt │ │ ├── stdafx.cpp │ │ ├── stdafx.h │ │ └── targetver.h │ └── ComodoMain │ ├── ComodoMain.sln │ └── ComodoMain │ ├── CisCOM.h │ ├── CmdGuardInterface.cpp │ ├── CmdGuardInterface.h │ ├── ComodoALPC.rc │ ├── ComodoALPC3.rc │ ├── ComodoMain.vcxproj │ ├── ComodoMain.vcxproj.filters │ ├── Hollower.cpp │ ├── Hollower.h │ ├── NtStuff.h │ ├── PEData.cpp │ ├── PEData.h │ ├── RCa31692 │ ├── RCb31692 │ ├── RCc31692 │ ├── ReadMe.txt │ ├── UserMethods.cpp │ ├── UserMethods.h │ ├── icon1.ico │ ├── main.cpp │ ├── ntbasic.h │ ├── resource.h │ ├── stdafx.cpp │ ├── stdafx.h │ └── targetver.h ├── FujiElectric └── VServer │ └── cve_2019_3946_fuji_vserver_dos.py ├── LICENSE ├── Liferay Portal ├── beans_bypass.py └── image_bypass.py ├── MAGMI ├── cve-2020-5776 │ ├── csrf_poc.html │ └── sample.csv └── cve-2020-5777 │ └── auth_bypass.py ├── MXPlayer └── directory_traversal.py ├── Microsoft ├── Sysinternals │ └── PsExecEscalate.cpp └── Windows │ └── UACBypass │ ├── UACBypass.cpp │ ├── UACBypass.rc │ ├── UACBypass.sln │ ├── UACBypass.vcxproj │ ├── UACBypass.vcxproj.filters │ ├── resource.h │ ├── stdafx.cpp │ ├── stdafx.h │ └── targetver.h ├── Qualcomm └── Atheros │ └── QcomWlanSrv │ └── cve-2019-10618.cpp ├── README.md ├── RockwellAutomation ├── FactoryTalk │ ├── rockwell_FTDiagViewer_dos.py │ ├── rockwell_ftlinx_ConfigureItems_dos.py │ ├── rockwell_ftlinx_LoadIconStream_dos.py │ └── rockwell_ftlinx_double_OpenNamespace_dos.py ├── RSLinx │ ├── cve_2018_14821_heap_overflow.py │ ├── cve_2018_14829_stack_overflow.py │ └── cve_2019_6553_eks_stack_overflow.py └── ThinManager_ThinServer │ ├── thinserver_int32_overflow.py │ ├── thinserver_msg_38_path_traversal_file_upload.py │ ├── thinserver_path_traversal_file_deletion.py │ ├── thinserver_path_traversal_file_download.py │ ├── thinserver_path_traversal_file_upload.py │ └── thinserver_sendfile_dos.py ├── SchneiderElectric ├── IGSS │ ├── igss_dataserver_int32_overflow.py │ └── igss_dataserver_memleak.py ├── InduSoft │ ├── cve_2018_10620_indusoft_rce.py │ ├── cve_2018_17914_indusoft_rce.py │ ├── cve_2018_17916_indusoft_rce.py │ └── cve_2018_8840_indusoft_rce.py ├── M340 │ ├── auth_bypass.py │ └── ident.py └── ModiconQuantum │ └── cve_2018_7811_modicon_pass_reset.py ├── Siemens └── TIAPortal │ ├── cve_2019_10915_tia_portal_rce.py │ ├── cve_2019_10915_tia_portal_update_server.py │ ├── cve_2019_19282_siemens_ccagent_int32_overflow.py │ ├── mal_Inventory_TIAPORTAL_V15_UPD99.txt │ ├── mal_Inventory_TIAPORTAL_V15_UPD99.xml │ └── mal_UpdatesSummaryCatalog.xml ├── SimpliSafe ├── example_spi_capture.csv ├── example_spi_dump.txt ├── get_packets.py ├── packet_decoder.py ├── simpli_ble.py └── spi_decoder.py ├── Sloan Smart Faucets └── sloan_poc.py ├── Solarwinds └── Dameware │ ├── dameware_dwrcrsa_sigpubkey_bof.py │ └── dwrcs_dwDrvInst_rce.py ├── Teltonika └── TRB245 │ ├── csrf_poc_CVE-2020-5770.html │ └── tlt_custom_pkg_coStreamApp_2020-03-05_mips_24kc_CVE-2020-5772.ipk ├── TrendMicro ├── MobileSecurity │ └── tmms.py ├── ServerProtect │ ├── serverprotect_info_server_cmd_73730_int32_overflow.py │ └── serverprotect_info_server_dos.py └── tm_apex_one_fcgiOfcDDA_file_upload.py ├── Ubiquiti ├── Cloud_Key_Gen2_Plus │ └── Ubiquiti UniFi Camera System - Zero Day Research - Confluence.pdf ├── UniFi_Management_Portal │ ├── enumerate_unifi_mp_apis.py │ ├── test_unifi_mp_apis.py │ └── unifi_mp_debug_setup.sh └── UniFi_Protect │ ├── cve_2020_8213_unifi_protect_username_discovery.py │ ├── enumerate_unifi_protect_apis.py │ ├── test_unifi_protect_apis.py │ └── unifi_protect_debug_setup.sh ├── Webroot ├── WebRootPoC.py └── wrUrl.dll ├── WordPress └── plugins │ ├── Icegram │ └── email_subscribers_and_newsletters │ │ ├── csrf_poc.html │ │ └── sqli_info_disclosure_poc.py │ └── SRS_Simple_Hits_Counter │ └── blind_sqli_tra_2020_42.py ├── Zoom ├── msg_templates.py └── zoomster.py ├── advantech └── webaccess_scada │ └── webaccess_832_cve-2018-15705.py ├── amcrest ├── device_test_crash_auth.py ├── ip2m │ └── get_dahua_audio.py └── log_query_crash_auth.py ├── cisco ├── ip_phone │ ├── cve_2016_1421.txt │ └── cve_2020_3161.txt ├── small_business_sf_bypass.py └── spagett.py ├── citrix └── citrix_sdwan_1022_rce.py ├── codesys ├── codesys_gateway_v3_config_modification_tra_2020_04.py ├── codesys_v3_webserver_heap_overflow.py ├── codesys_v3_webserver_int32_overflow_tra_2020_16.py └── codesys_v3_webserver_memory_leak_dos_tra_2020_46.py ├── crestron ├── am-100 │ ├── cve_2019_3929.txt │ └── wppcmd_version.py └── dge-100 │ └── discover_and_hostname_change.py ├── druva └── inSync │ ├── convert_pyc_opcodes.py │ ├── druva_insync_osx_get_token.zip │ ├── druva_insync_osx_lpe.py │ ├── druva_win_cphwnet64.py │ └── insync_rpc_set_acl_auth_exploit.py ├── flexera └── flexnet_publisher │ └── flexera_fnp_lmadmin_msg_282_dos_cve-2020-12080.py ├── gpon └── nokia_a-l_i-240w-q │ └── gpon_poc_cve-2019-3921.py ├── grandstream ├── gxp1600 │ ├── upload_rce.py │ └── vpnscript.tar └── ucm62xx │ ├── cti_injection.py │ ├── dump_http_user_creds.py │ ├── pbx_sploit.py │ ├── websockify_challenge_injection.py │ └── websockify_login_injection.py ├── hpe └── imc │ ├── hp_imc_7_3_10001_stack_overflow.py │ ├── hp_imc_7_3_10002_download_backups.py │ ├── hp_imc_7_3_10003_filename_dos.py │ ├── hp_imc_7_3_10014_kill.py │ ├── hp_imc_7_3_jmx │ ├── ExecCommandBean │ │ ├── build.sh │ │ └── src │ │ │ └── mbean │ │ │ └── cmd │ │ │ ├── ExecCommand.java │ │ │ └── ExecCommandMBean.java │ ├── TLS_Cert_Download │ │ ├── build.sh │ │ └── src │ │ │ ├── local │ │ │ └── rmi │ │ │ │ └── Dumper.java │ │ │ └── tls │ │ │ └── cert │ │ │ ├── CertManager.java │ │ │ ├── Fetch.java │ │ │ └── Runner.java │ ├── build_all.sh │ ├── clean.sh │ ├── jmx_rmi_client │ │ ├── build.sh │ │ └── src │ │ │ └── jmx_rmi_client │ │ │ └── Client.java │ ├── readme.txt │ ├── rmi-dumpregistry │ │ ├── build.sh │ │ └── src │ │ │ └── local │ │ │ └── rmi │ │ │ └── Dumper.java │ ├── run_jconsole.sh │ ├── run_rce.sh │ └── vars.txt │ ├── hp_imc_7_3_remote_file_chooser │ ├── Runit.java │ └── build_and_run.sh │ ├── hp_imc_dbman_conf_BackHoseIp_stack_overflow_73_E0605P06.py │ ├── hp_imc_dbman_conf_BackHoseIp_stack_overflow_after_restart_73_e0703.py │ ├── hp_imc_dbman_conf_cmd_injection_73_E0605P06.py │ ├── hp_imc_dbman_conf_cmd_injection_73_e0703.py │ └── hp_imc_ping.py ├── ibm ├── ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py └── spectrum_protect │ ├── attacker-rpm-1.0-0.noarch.rpm │ ├── attacker-rpm.spec │ ├── ibm_spectrum_protect_CertQryResp_dos_CVE-2020-4559.py │ ├── ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py │ ├── ibm_spoc_DebugRPC_dos_CVE-2020-4956.py │ ├── ibm_spoc_QueryReadStoreCache_rce_CVE-2020-4955.py │ └── ibm_spp_file_upload_rce_CVE-2020-4470.py ├── indusoft └── web_studio │ └── cmd_66_exploit.py ├── kodi ├── kodi_attack.py └── script.bind.shell.1270.zip ├── manageengine ├── AEAGENT_integeroverflow_CVE-2021–20082.py └── manageengine_sdp_unauth_stored_xss_rce_windows.py ├── marvell └── qconvergeconsole │ └── marvell_qcc_gwttestservice_post_auth_rce.py ├── nagios └── nagiosxi_556_rce_lpe.py ├── netatalk └── cve_2018_1160 │ ├── README.md │ └── pea.py ├── nuuo └── nvrmini2 │ ├── cve_2018_1149 │ ├── README.md │ ├── cut.py │ └── nvrmini2_enable_telnet.py │ └── cve_2018_15716 │ └── poc_nuuo_upgrade_handle.py ├── plex └── plex_media_server │ ├── auth_dict_unpickle_rce_exploit_tra_2020_32.py │ └── tra_2020_25 │ └── RpcClient │ ├── RpcClient.sln │ └── RpcClient │ ├── RpcClient.cpp │ ├── RpcClient.idl │ ├── RpcClient.vcxproj │ ├── RpcClient.vcxproj.filters │ ├── RpcClient.vcxproj.user │ └── targetver.h ├── tp-link ├── archer_a7_v5 │ ├── ftp_put_shell.py │ ├── make_evil_ntfs_archera7v5.sh │ └── upnp_get_passwords.py └── archer_c9_v1 │ └── make_evil_ntfs_archerc9v1.sh └── verizon ├── ReverseTcpShell.java └── verizon_g1100_cmd_injection.py /.github/CODEOWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/.github/CODEOWNERS -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | .DS_Store 2 | -------------------------------------------------------------------------------- /Advantech/advantech_iview_post_auth_sqli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Advantech/advantech_iview_post_auth_sqli.py -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode.sln -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/CisHeader.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/CisHeader.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ComodoInjectionCode.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ComodoInjectionCode.vcxproj -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ComodoInjectionCode.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ComodoInjectionCode.vcxproj.filters -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/InjectedCode.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/InjectedCode.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/NtStuff.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/NtStuff.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ReadMe.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/ReadMe.txt -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/stdafx.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/stdafx.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/stdafx.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/stdafx.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/targetver.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoInjectionCode/ComodoInjectionCode/targetver.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain.sln -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CisCOM.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CisCOM.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CmdGuardInterface.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CmdGuardInterface.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CmdGuardInterface.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/CmdGuardInterface.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoALPC.rc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoALPC.rc -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoALPC3.rc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoALPC3.rc -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoMain.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoMain.vcxproj -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoMain.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ComodoMain.vcxproj.filters -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/Hollower.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/Hollower.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/Hollower.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/Hollower.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/NtStuff.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/NtStuff.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/PEData.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/PEData.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/PEData.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/PEData.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCa31692: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCa31692 -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCb31692: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCb31692 -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCc31692: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/RCc31692 -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ReadMe.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ReadMe.txt -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/UserMethods.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/UserMethods.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/UserMethods.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/UserMethods.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/icon1.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/icon1.ico -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/main.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/main.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ntbasic.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/ntbasic.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/resource.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/resource.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/stdafx.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/stdafx.cpp -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/stdafx.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/stdafx.h -------------------------------------------------------------------------------- /Comodo/Comodo Antivirus/ComodoMain/ComodoMain/targetver.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Comodo/Comodo Antivirus/ComodoMain/ComodoMain/targetver.h -------------------------------------------------------------------------------- /FujiElectric/VServer/cve_2019_3946_fuji_vserver_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/FujiElectric/VServer/cve_2019_3946_fuji_vserver_dos.py -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/LICENSE -------------------------------------------------------------------------------- /Liferay Portal/beans_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Liferay Portal/beans_bypass.py -------------------------------------------------------------------------------- /Liferay Portal/image_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Liferay Portal/image_bypass.py -------------------------------------------------------------------------------- /MAGMI/cve-2020-5776/csrf_poc.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/MAGMI/cve-2020-5776/csrf_poc.html -------------------------------------------------------------------------------- /MAGMI/cve-2020-5776/sample.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/MAGMI/cve-2020-5776/sample.csv -------------------------------------------------------------------------------- /MAGMI/cve-2020-5777/auth_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/MAGMI/cve-2020-5777/auth_bypass.py -------------------------------------------------------------------------------- /MXPlayer/directory_traversal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/MXPlayer/directory_traversal.py -------------------------------------------------------------------------------- /Microsoft/Sysinternals/PsExecEscalate.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Sysinternals/PsExecEscalate.cpp -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/UACBypass.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/UACBypass.cpp -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/UACBypass.rc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/UACBypass.rc -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/UACBypass.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/UACBypass.sln -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/UACBypass.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/UACBypass.vcxproj -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/UACBypass.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/UACBypass.vcxproj.filters -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/resource.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/resource.h -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/stdafx.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/stdafx.cpp -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/stdafx.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/stdafx.h -------------------------------------------------------------------------------- /Microsoft/Windows/UACBypass/targetver.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Microsoft/Windows/UACBypass/targetver.h -------------------------------------------------------------------------------- /Qualcomm/Atheros/QcomWlanSrv/cve-2019-10618.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Qualcomm/Atheros/QcomWlanSrv/cve-2019-10618.cpp -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/README.md -------------------------------------------------------------------------------- /RockwellAutomation/FactoryTalk/rockwell_FTDiagViewer_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/FactoryTalk/rockwell_FTDiagViewer_dos.py -------------------------------------------------------------------------------- /RockwellAutomation/FactoryTalk/rockwell_ftlinx_ConfigureItems_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/FactoryTalk/rockwell_ftlinx_ConfigureItems_dos.py -------------------------------------------------------------------------------- /RockwellAutomation/FactoryTalk/rockwell_ftlinx_LoadIconStream_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/FactoryTalk/rockwell_ftlinx_LoadIconStream_dos.py -------------------------------------------------------------------------------- /RockwellAutomation/FactoryTalk/rockwell_ftlinx_double_OpenNamespace_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/FactoryTalk/rockwell_ftlinx_double_OpenNamespace_dos.py -------------------------------------------------------------------------------- /RockwellAutomation/RSLinx/cve_2018_14821_heap_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/RSLinx/cve_2018_14821_heap_overflow.py -------------------------------------------------------------------------------- /RockwellAutomation/RSLinx/cve_2018_14829_stack_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/RSLinx/cve_2018_14829_stack_overflow.py -------------------------------------------------------------------------------- /RockwellAutomation/RSLinx/cve_2019_6553_eks_stack_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/RSLinx/cve_2019_6553_eks_stack_overflow.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_int32_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_int32_overflow.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_msg_38_path_traversal_file_upload.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_msg_38_path_traversal_file_upload.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_deletion.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_deletion.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_download.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_download.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_upload.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_path_traversal_file_upload.py -------------------------------------------------------------------------------- /RockwellAutomation/ThinManager_ThinServer/thinserver_sendfile_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/RockwellAutomation/ThinManager_ThinServer/thinserver_sendfile_dos.py -------------------------------------------------------------------------------- /SchneiderElectric/IGSS/igss_dataserver_int32_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/IGSS/igss_dataserver_int32_overflow.py -------------------------------------------------------------------------------- /SchneiderElectric/IGSS/igss_dataserver_memleak.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/IGSS/igss_dataserver_memleak.py -------------------------------------------------------------------------------- /SchneiderElectric/InduSoft/cve_2018_10620_indusoft_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/InduSoft/cve_2018_10620_indusoft_rce.py -------------------------------------------------------------------------------- /SchneiderElectric/InduSoft/cve_2018_17914_indusoft_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/InduSoft/cve_2018_17914_indusoft_rce.py -------------------------------------------------------------------------------- /SchneiderElectric/InduSoft/cve_2018_17916_indusoft_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/InduSoft/cve_2018_17916_indusoft_rce.py -------------------------------------------------------------------------------- /SchneiderElectric/InduSoft/cve_2018_8840_indusoft_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/InduSoft/cve_2018_8840_indusoft_rce.py -------------------------------------------------------------------------------- /SchneiderElectric/M340/auth_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/M340/auth_bypass.py -------------------------------------------------------------------------------- /SchneiderElectric/M340/ident.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/M340/ident.py -------------------------------------------------------------------------------- /SchneiderElectric/ModiconQuantum/cve_2018_7811_modicon_pass_reset.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SchneiderElectric/ModiconQuantum/cve_2018_7811_modicon_pass_reset.py -------------------------------------------------------------------------------- /Siemens/TIAPortal/cve_2019_10915_tia_portal_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/cve_2019_10915_tia_portal_rce.py -------------------------------------------------------------------------------- /Siemens/TIAPortal/cve_2019_10915_tia_portal_update_server.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/cve_2019_10915_tia_portal_update_server.py -------------------------------------------------------------------------------- /Siemens/TIAPortal/cve_2019_19282_siemens_ccagent_int32_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/cve_2019_19282_siemens_ccagent_int32_overflow.py -------------------------------------------------------------------------------- /Siemens/TIAPortal/mal_Inventory_TIAPORTAL_V15_UPD99.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/mal_Inventory_TIAPORTAL_V15_UPD99.txt -------------------------------------------------------------------------------- /Siemens/TIAPortal/mal_Inventory_TIAPORTAL_V15_UPD99.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/mal_Inventory_TIAPORTAL_V15_UPD99.xml -------------------------------------------------------------------------------- /Siemens/TIAPortal/mal_UpdatesSummaryCatalog.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Siemens/TIAPortal/mal_UpdatesSummaryCatalog.xml -------------------------------------------------------------------------------- /SimpliSafe/example_spi_capture.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/example_spi_capture.csv -------------------------------------------------------------------------------- /SimpliSafe/example_spi_dump.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/example_spi_dump.txt -------------------------------------------------------------------------------- /SimpliSafe/get_packets.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/get_packets.py -------------------------------------------------------------------------------- /SimpliSafe/packet_decoder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/packet_decoder.py -------------------------------------------------------------------------------- /SimpliSafe/simpli_ble.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/simpli_ble.py -------------------------------------------------------------------------------- /SimpliSafe/spi_decoder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/SimpliSafe/spi_decoder.py -------------------------------------------------------------------------------- /Sloan Smart Faucets/sloan_poc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Sloan Smart Faucets/sloan_poc.py -------------------------------------------------------------------------------- /Solarwinds/Dameware/dameware_dwrcrsa_sigpubkey_bof.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Solarwinds/Dameware/dameware_dwrcrsa_sigpubkey_bof.py -------------------------------------------------------------------------------- /Solarwinds/Dameware/dwrcs_dwDrvInst_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Solarwinds/Dameware/dwrcs_dwDrvInst_rce.py -------------------------------------------------------------------------------- /Teltonika/TRB245/csrf_poc_CVE-2020-5770.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Teltonika/TRB245/csrf_poc_CVE-2020-5770.html -------------------------------------------------------------------------------- /Teltonika/TRB245/tlt_custom_pkg_coStreamApp_2020-03-05_mips_24kc_CVE-2020-5772.ipk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Teltonika/TRB245/tlt_custom_pkg_coStreamApp_2020-03-05_mips_24kc_CVE-2020-5772.ipk -------------------------------------------------------------------------------- /TrendMicro/MobileSecurity/tmms.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/TrendMicro/MobileSecurity/tmms.py -------------------------------------------------------------------------------- /TrendMicro/ServerProtect/serverprotect_info_server_cmd_73730_int32_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/TrendMicro/ServerProtect/serverprotect_info_server_cmd_73730_int32_overflow.py -------------------------------------------------------------------------------- /TrendMicro/ServerProtect/serverprotect_info_server_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/TrendMicro/ServerProtect/serverprotect_info_server_dos.py -------------------------------------------------------------------------------- /TrendMicro/tm_apex_one_fcgiOfcDDA_file_upload.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/TrendMicro/tm_apex_one_fcgiOfcDDA_file_upload.py -------------------------------------------------------------------------------- /Ubiquiti/Cloud_Key_Gen2_Plus/Ubiquiti UniFi Camera System - Zero Day Research - Confluence.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/Cloud_Key_Gen2_Plus/Ubiquiti UniFi Camera System - Zero Day Research - Confluence.pdf -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Management_Portal/enumerate_unifi_mp_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Management_Portal/enumerate_unifi_mp_apis.py -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Management_Portal/test_unifi_mp_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Management_Portal/test_unifi_mp_apis.py -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Management_Portal/unifi_mp_debug_setup.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Management_Portal/unifi_mp_debug_setup.sh -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Protect/cve_2020_8213_unifi_protect_username_discovery.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Protect/cve_2020_8213_unifi_protect_username_discovery.py -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Protect/enumerate_unifi_protect_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Protect/enumerate_unifi_protect_apis.py -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Protect/test_unifi_protect_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Protect/test_unifi_protect_apis.py -------------------------------------------------------------------------------- /Ubiquiti/UniFi_Protect/unifi_protect_debug_setup.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Ubiquiti/UniFi_Protect/unifi_protect_debug_setup.sh -------------------------------------------------------------------------------- /Webroot/WebRootPoC.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Webroot/WebRootPoC.py -------------------------------------------------------------------------------- /Webroot/wrUrl.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Webroot/wrUrl.dll -------------------------------------------------------------------------------- /WordPress/plugins/Icegram/email_subscribers_and_newsletters/csrf_poc.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/WordPress/plugins/Icegram/email_subscribers_and_newsletters/csrf_poc.html -------------------------------------------------------------------------------- /WordPress/plugins/Icegram/email_subscribers_and_newsletters/sqli_info_disclosure_poc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/WordPress/plugins/Icegram/email_subscribers_and_newsletters/sqli_info_disclosure_poc.py -------------------------------------------------------------------------------- /WordPress/plugins/SRS_Simple_Hits_Counter/blind_sqli_tra_2020_42.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/WordPress/plugins/SRS_Simple_Hits_Counter/blind_sqli_tra_2020_42.py -------------------------------------------------------------------------------- /Zoom/msg_templates.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Zoom/msg_templates.py -------------------------------------------------------------------------------- /Zoom/zoomster.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/Zoom/zoomster.py -------------------------------------------------------------------------------- /advantech/webaccess_scada/webaccess_832_cve-2018-15705.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/advantech/webaccess_scada/webaccess_832_cve-2018-15705.py -------------------------------------------------------------------------------- /amcrest/device_test_crash_auth.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/amcrest/device_test_crash_auth.py -------------------------------------------------------------------------------- /amcrest/ip2m/get_dahua_audio.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/amcrest/ip2m/get_dahua_audio.py -------------------------------------------------------------------------------- /amcrest/log_query_crash_auth.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/amcrest/log_query_crash_auth.py -------------------------------------------------------------------------------- /cisco/ip_phone/cve_2016_1421.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/cisco/ip_phone/cve_2016_1421.txt -------------------------------------------------------------------------------- /cisco/ip_phone/cve_2020_3161.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/cisco/ip_phone/cve_2020_3161.txt -------------------------------------------------------------------------------- /cisco/small_business_sf_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/cisco/small_business_sf_bypass.py -------------------------------------------------------------------------------- /cisco/spagett.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/cisco/spagett.py -------------------------------------------------------------------------------- /citrix/citrix_sdwan_1022_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/citrix/citrix_sdwan_1022_rce.py -------------------------------------------------------------------------------- /codesys/codesys_gateway_v3_config_modification_tra_2020_04.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/codesys/codesys_gateway_v3_config_modification_tra_2020_04.py -------------------------------------------------------------------------------- /codesys/codesys_v3_webserver_heap_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/codesys/codesys_v3_webserver_heap_overflow.py -------------------------------------------------------------------------------- /codesys/codesys_v3_webserver_int32_overflow_tra_2020_16.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/codesys/codesys_v3_webserver_int32_overflow_tra_2020_16.py -------------------------------------------------------------------------------- /codesys/codesys_v3_webserver_memory_leak_dos_tra_2020_46.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/codesys/codesys_v3_webserver_memory_leak_dos_tra_2020_46.py -------------------------------------------------------------------------------- /crestron/am-100/cve_2019_3929.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/crestron/am-100/cve_2019_3929.txt -------------------------------------------------------------------------------- /crestron/am-100/wppcmd_version.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/crestron/am-100/wppcmd_version.py -------------------------------------------------------------------------------- /crestron/dge-100/discover_and_hostname_change.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/crestron/dge-100/discover_and_hostname_change.py -------------------------------------------------------------------------------- /druva/inSync/convert_pyc_opcodes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/druva/inSync/convert_pyc_opcodes.py -------------------------------------------------------------------------------- /druva/inSync/druva_insync_osx_get_token.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/druva/inSync/druva_insync_osx_get_token.zip -------------------------------------------------------------------------------- /druva/inSync/druva_insync_osx_lpe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/druva/inSync/druva_insync_osx_lpe.py -------------------------------------------------------------------------------- /druva/inSync/druva_win_cphwnet64.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/druva/inSync/druva_win_cphwnet64.py -------------------------------------------------------------------------------- /druva/inSync/insync_rpc_set_acl_auth_exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/druva/inSync/insync_rpc_set_acl_auth_exploit.py -------------------------------------------------------------------------------- /flexera/flexnet_publisher/flexera_fnp_lmadmin_msg_282_dos_cve-2020-12080.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/flexera/flexnet_publisher/flexera_fnp_lmadmin_msg_282_dos_cve-2020-12080.py -------------------------------------------------------------------------------- /gpon/nokia_a-l_i-240w-q/gpon_poc_cve-2019-3921.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/gpon/nokia_a-l_i-240w-q/gpon_poc_cve-2019-3921.py -------------------------------------------------------------------------------- /grandstream/gxp1600/upload_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/gxp1600/upload_rce.py -------------------------------------------------------------------------------- /grandstream/gxp1600/vpnscript.tar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/gxp1600/vpnscript.tar -------------------------------------------------------------------------------- /grandstream/ucm62xx/cti_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/ucm62xx/cti_injection.py -------------------------------------------------------------------------------- /grandstream/ucm62xx/dump_http_user_creds.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/ucm62xx/dump_http_user_creds.py -------------------------------------------------------------------------------- /grandstream/ucm62xx/pbx_sploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/ucm62xx/pbx_sploit.py -------------------------------------------------------------------------------- /grandstream/ucm62xx/websockify_challenge_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/ucm62xx/websockify_challenge_injection.py -------------------------------------------------------------------------------- /grandstream/ucm62xx/websockify_login_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/grandstream/ucm62xx/websockify_login_injection.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_10001_stack_overflow.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_10001_stack_overflow.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_10002_download_backups.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_10002_download_backups.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_10003_filename_dos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_10003_filename_dos.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_10014_kill.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_10014_kill.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/build.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/src/mbean/cmd/ExecCommand.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/src/mbean/cmd/ExecCommand.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/src/mbean/cmd/ExecCommandMBean.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/ExecCommandBean/src/mbean/cmd/ExecCommandMBean.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/build.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/local/rmi/Dumper.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/local/rmi/Dumper.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/CertManager.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/CertManager.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/Fetch.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/Fetch.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/Runner.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/TLS_Cert_Download/src/tls/cert/Runner.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/build_all.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/build_all.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/clean.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/clean.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/jmx_rmi_client/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/jmx_rmi_client/build.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/jmx_rmi_client/src/jmx_rmi_client/Client.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/jmx_rmi_client/src/jmx_rmi_client/Client.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/readme.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/readme.txt -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/rmi-dumpregistry/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/rmi-dumpregistry/build.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/rmi-dumpregistry/src/local/rmi/Dumper.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/rmi-dumpregistry/src/local/rmi/Dumper.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/run_jconsole.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/run_jconsole.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/run_rce.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/run_rce.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_jmx/vars.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_jmx/vars.txt -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_remote_file_chooser/Runit.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_remote_file_chooser/Runit.java -------------------------------------------------------------------------------- /hpe/imc/hp_imc_7_3_remote_file_chooser/build_and_run.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_7_3_remote_file_chooser/build_and_run.sh -------------------------------------------------------------------------------- /hpe/imc/hp_imc_dbman_conf_BackHoseIp_stack_overflow_73_E0605P06.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_dbman_conf_BackHoseIp_stack_overflow_73_E0605P06.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_dbman_conf_BackHoseIp_stack_overflow_after_restart_73_e0703.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_dbman_conf_BackHoseIp_stack_overflow_after_restart_73_e0703.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_dbman_conf_cmd_injection_73_E0605P06.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_dbman_conf_cmd_injection_73_E0605P06.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_dbman_conf_cmd_injection_73_e0703.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_dbman_conf_cmd_injection_73_e0703.py -------------------------------------------------------------------------------- /hpe/imc/hp_imc_ping.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/hpe/imc/hp_imc_ping.py -------------------------------------------------------------------------------- /ibm/ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py -------------------------------------------------------------------------------- /ibm/spectrum_protect/attacker-rpm-1.0-0.noarch.rpm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/attacker-rpm-1.0-0.noarch.rpm -------------------------------------------------------------------------------- /ibm/spectrum_protect/attacker-rpm.spec: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/attacker-rpm.spec -------------------------------------------------------------------------------- /ibm/spectrum_protect/ibm_spectrum_protect_CertQryResp_dos_CVE-2020-4559.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/ibm_spectrum_protect_CertQryResp_dos_CVE-2020-4559.py -------------------------------------------------------------------------------- /ibm/spectrum_protect/ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/ibm_spectrum_protect_verb_134_stack_overflow_CVE-2020-4415.py -------------------------------------------------------------------------------- /ibm/spectrum_protect/ibm_spoc_DebugRPC_dos_CVE-2020-4956.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/ibm_spoc_DebugRPC_dos_CVE-2020-4956.py -------------------------------------------------------------------------------- /ibm/spectrum_protect/ibm_spoc_QueryReadStoreCache_rce_CVE-2020-4955.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/ibm_spoc_QueryReadStoreCache_rce_CVE-2020-4955.py -------------------------------------------------------------------------------- /ibm/spectrum_protect/ibm_spp_file_upload_rce_CVE-2020-4470.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/ibm/spectrum_protect/ibm_spp_file_upload_rce_CVE-2020-4470.py -------------------------------------------------------------------------------- /indusoft/web_studio/cmd_66_exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/indusoft/web_studio/cmd_66_exploit.py -------------------------------------------------------------------------------- /kodi/kodi_attack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/kodi/kodi_attack.py -------------------------------------------------------------------------------- /kodi/script.bind.shell.1270.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/kodi/script.bind.shell.1270.zip -------------------------------------------------------------------------------- /manageengine/AEAGENT_integeroverflow_CVE-2021–20082.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/manageengine/AEAGENT_integeroverflow_CVE-2021–20082.py -------------------------------------------------------------------------------- /manageengine/manageengine_sdp_unauth_stored_xss_rce_windows.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/manageengine/manageengine_sdp_unauth_stored_xss_rce_windows.py -------------------------------------------------------------------------------- /marvell/qconvergeconsole/marvell_qcc_gwttestservice_post_auth_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/marvell/qconvergeconsole/marvell_qcc_gwttestservice_post_auth_rce.py -------------------------------------------------------------------------------- /nagios/nagiosxi_556_rce_lpe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/nagios/nagiosxi_556_rce_lpe.py -------------------------------------------------------------------------------- /netatalk/cve_2018_1160/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/netatalk/cve_2018_1160/README.md -------------------------------------------------------------------------------- /netatalk/cve_2018_1160/pea.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/netatalk/cve_2018_1160/pea.py -------------------------------------------------------------------------------- /nuuo/nvrmini2/cve_2018_1149/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/nuuo/nvrmini2/cve_2018_1149/README.md -------------------------------------------------------------------------------- /nuuo/nvrmini2/cve_2018_1149/cut.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/nuuo/nvrmini2/cve_2018_1149/cut.py -------------------------------------------------------------------------------- /nuuo/nvrmini2/cve_2018_1149/nvrmini2_enable_telnet.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/nuuo/nvrmini2/cve_2018_1149/nvrmini2_enable_telnet.py -------------------------------------------------------------------------------- /nuuo/nvrmini2/cve_2018_15716/poc_nuuo_upgrade_handle.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/nuuo/nvrmini2/cve_2018_15716/poc_nuuo_upgrade_handle.py -------------------------------------------------------------------------------- /plex/plex_media_server/auth_dict_unpickle_rce_exploit_tra_2020_32.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/auth_dict_unpickle_rce_exploit_tra_2020_32.py -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient.sln -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.cpp -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.idl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.idl -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj.filters: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj.filters -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj.user: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/RpcClient.vcxproj.user -------------------------------------------------------------------------------- /plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/targetver.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/plex/plex_media_server/tra_2020_25/RpcClient/RpcClient/targetver.h -------------------------------------------------------------------------------- /tp-link/archer_a7_v5/ftp_put_shell.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/tp-link/archer_a7_v5/ftp_put_shell.py -------------------------------------------------------------------------------- /tp-link/archer_a7_v5/make_evil_ntfs_archera7v5.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/tp-link/archer_a7_v5/make_evil_ntfs_archera7v5.sh -------------------------------------------------------------------------------- /tp-link/archer_a7_v5/upnp_get_passwords.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/tp-link/archer_a7_v5/upnp_get_passwords.py -------------------------------------------------------------------------------- /tp-link/archer_c9_v1/make_evil_ntfs_archerc9v1.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/tp-link/archer_c9_v1/make_evil_ntfs_archerc9v1.sh -------------------------------------------------------------------------------- /verizon/ReverseTcpShell.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/verizon/ReverseTcpShell.java -------------------------------------------------------------------------------- /verizon/verizon_g1100_cmd_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/tenable/poc/HEAD/verizon/verizon_g1100_cmd_injection.py --------------------------------------------------------------------------------