pnigos

http://g.com/#'"//x=

pnig0s pnigos

http://g.com/#'"//x=

200 followers · 21 following

http://g.com/#'"//x=
http://g.com/#'"/>
http://g.com/#'"/>

https://orcid.org/0009-0003-8975-5943

Achievements

Highlights

gh-hijack-runner Public
Forked from synacktiv/gh-hijack-runner

A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.

Python Updated Jul 23, 2024
git_rce Public
Forked from amalmurali47/git_rce

Exploit PoC for CVE-2024-32002

Shell Updated May 19, 2024
CVE-2023-7028 Public
Forked from Vozec/CVE-2023-7028

This repository presents a proof-of-concept of CVE-2023-7028

Python Updated Jan 13, 2024
CVE-2023-36664-Ghostscript-command-injection Public
Forked from jakabakos/CVE-2023-36664-Ghostscript-command-injection

Ghostscript command injection vulnerability PoC (CVE-2023-36664)

Python Updated Aug 14, 2023
gitops-connector Public
Forked from pnig0sh11/gitops-connector

Python MIT License Updated Jul 23, 2023
gau Public
Forked from lc/gau

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Go MIT License Updated Jul 17, 2023
deployment-environments Public template
Forked from Azure/deployment-environments

Sample infrastructure-as-code templates to get started with Azure Deployment Environments service.

Bicep MIT License Updated Jun 20, 2023
CVE-2023-29007 Public
Forked from ethiack/CVE-2023-29007

PoC repository for CVE-2023-29007

Shell Updated Apr 26, 2023
PoCs1337 Public
Forked from AlmondOffSec/PoCs

Proof-of-concept code for various bugs

PostScript Apache License 2.0 Updated Apr 11, 2023
lib2shell Public
Forked from SeanPesce/lib2shell

Shared library implementations that transform the containing process into a shell when loaded (useful for privilege escalation, argument injection, file overwrites, LD_PRELOAD, etc.).

C++ 1 Updated Mar 11, 2023
containerapps-albumapi-python Public

Python MIT License Updated Dec 8, 2022
Whaler Public
Forked from P3GLEG/Whaler

Program to reverse Docker images into Dockerfiles

Go 1 GNU General Public License v3.0 Updated Jun 25, 2022
cloud-middleware-dataset Public
Forked from wiz-sec-public/cloud-middleware-dataset

Updated Jun 10, 2022
pspy Public
Forked from DominicBreuker/pspy

Monitor linux processes without root permissions

Go GNU General Public License v3.0 Updated May 30, 2022
truffleproc Public
Forked from controlplaneio/truffleproc

truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)

Shell Apache License 2.0 Updated May 29, 2022
sneak Public
Forked from ex0dus-0x/sneak

A container/VM malware that finds and exploits SSRF opportunities in a compromised cloud environment

Go Updated Apr 10, 2022
advisories Public
Forked from justinsteven/advisories

Creative Commons Zero v1.0 Universal Updated Mar 16, 2022
writeups Public
Forked from httpvoid/writeups

Updated Feb 2, 2022
burp-log4shell Public
Forked from silentsignal/burp-log4shell

Log4Shell scanner for Burp Suite

Kotlin 1 GNU General Public License v3.0 Updated Dec 13, 2021
python-log4rce Public
Forked from alexandre-lavoie/python-log4rce

An All-In-One Pure Python PoC for CVE-2021-44228

Python MIT License Updated Dec 13, 2021
log4shell-vulnerable-app Public
Forked from christophetd/log4shell-vulnerable-app

Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.

Java Updated Dec 11, 2021
ghostinthepdf Public
Forked from neex/ghostinthepdf

Go Updated Oct 4, 2021
whoc Public
Forked from twistlock/whoc

A container image that extracts the underlying container runtime

C MIT License Updated Sep 27, 2021
RCE-0-day-for-GhostScript-9.50 Public
Forked from duc-nt/RCE-0-day-for-GhostScript-9.50

RCE 0-day for GhostScript 9.50 - Payload generator

Python Updated Sep 5, 2021
malicious-pdf Public
Forked from pussycat0x/malicious-pdf

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator

Python BSD 2-Clause "Simplified" License Updated Aug 30, 2021
aws-amplify-gatsby-auth Public
Forked from aws-samples/aws-amplify-gatsby-auth

JavaScript MIT License Updated Jul 22, 2021
DNSCewl Public
Forked from codingo/DNSCewl

A DNS Bruteforcing Wordlist Generator

C++ GNU General Public License v3.0 Updated Jun 25, 2021
azure-rest-api-specs Public
Forked from xiaomin-ms/azure-rest-api-specs

The source for REST API specifications for Microsoft Azure.

TypeScript MIT License Updated Jun 15, 2021
image-upload-exploits Public
Forked from barrracud4/image-upload-exploits

This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.

PostScript Updated Jun 13, 2021
exploits Public
Forked from r4j0x00/exploits

JavaScript BSD 2-Clause "Simplified" License Updated Apr 13, 2021

pnig0s pnigos

Achievements

Achievements

Highlights

gh-hijack-runner Public

Uh oh!

git_rce Public

Uh oh!

CVE-2023-7028 Public

Uh oh!

CVE-2023-36664-Ghostscript-command-injection Public

Uh oh!

gitops-connector Public

Uh oh!

gau Public

Uh oh!

deployment-environments Public template

Uh oh!

CVE-2023-29007 Public

Uh oh!

PoCs1337 Public

Uh oh!

lib2shell Public

Uh oh!

containerapps-albumapi-python Public

Uh oh!

Whaler Public

Uh oh!

cloud-middleware-dataset Public

Uh oh!

pspy Public

Uh oh!

truffleproc Public

Uh oh!

sneak Public

Uh oh!

advisories Public

Uh oh!

writeups Public

Uh oh!

burp-log4shell Public

Uh oh!

python-log4rce Public

Uh oh!

log4shell-vulnerable-app Public

Uh oh!

ghostinthepdf Public

Uh oh!

whoc Public

Uh oh!

RCE-0-day-for-GhostScript-9.50 Public

Uh oh!

malicious-pdf Public

Uh oh!

aws-amplify-gatsby-auth Public

Uh oh!

DNSCewl Public

Uh oh!

azure-rest-api-specs Public

Uh oh!

image-upload-exploits Public

Uh oh!

exploits Public

Uh oh!