Multiple new CVEs discovered and disclosed! XSS, file uploads and more!
CVE-2022-34613, CVE-2022-34618, CVE-2022-34619 – Multiple XSS (And more) in Mealie
Category: Penetration Testing
CVE-2022-34625 – Server-Side Template Injection to Remote Code Execution (SSTI) to (RCE) in Mealie – A lesson in patience
A detailed walkthrough of CVE-2022-34625 aka a Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)
Azure Cloud Pen Testing Software Suite
A great collection of scripts for attacking and defending Azure environments. Perfect for any azure cloud security assessment, audit or penetration test.
Should I add this Repo to TreeHouse Wordlists?
You tell me what you think of this wordlist repo? Is it worth adding?
CLI Web Discovery Alternative to Dirb, Dirsearch, Etc
A great alternative to have for web discovery during web app pen tests or bug bounties.
All in One RF/HID reader/writer smaller then the ProxMark?!
A great and useful device for any physical penetration test or hardware hacking engagement.
An Azure AD Recon and Exploitation Framework
A toolset for performing recon and exploiting an Azure AD instance.
Holy Smokes Batman! Another big repo of Bug Bounty Reports, Cheat sheets, Checklists and more!
Another Repo of Web Application and API Bug Bounty, Penetration test and security assessment documents, reports and more!
Custom Formula CSV XLS XLSX Injection Wordlist
Created my own Formula/CSV/XLS/XLSX formula injection wordlist and added it to TreeHouse wordlists!
OneListForAll added to Treehouse Wordlists!
An awesome wordlist repo added to TreeHouse Wordlists! Yay!