Drupalgeddon2
Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002) (by dreadlocked)
discord-zeroclick-exploit
Discord client zero-click RCE (by 0x44F)
Drupalgeddon2 | discord-zeroclick-exploit | |
---|---|---|
2 | 1 | |
583 | 31 | |
- | - | |
0.0 | 3.9 | |
about 4 years ago | over 3 years ago | |
Ruby | Ruby | |
- | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Drupalgeddon2
Posts with mentions or reviews of Drupalgeddon2.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Automating SQL injection for the exam
Looking at https://github.com/dreadlocked/Drupalgeddon2 : this is an exploit for a particular CVE. Although it is is quite expansive in automating how the exploit should be executed depending on the Drupal version, I do not believe this classifies as automated exploitation as it deals with one particular CVE.
-
drupalgeddon2 is it allowed on the exam?
I am referring to this:https://github.com/dreadlocked/Drupalgeddon2
discord-zeroclick-exploit
Posts with mentions or reviews of discord-zeroclick-exploit.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Is https://archuser.de safe?
This isn't true. This past year alone has revealed several zero-click RCEs, especially in iOS. Discord had a notable zero-click exploit in 2021 that involved images. Microsoft Teams had a similar bug, where one GIF can give you control over someones account.
What are some alternatives?
When comparing Drupalgeddon2 and discord-zeroclick-exploit you can also consider the following projects:
docker-compose-drupal - Drupal 8 Docker Compose dev stack.
one_gadget - The best tool for finding one gadget RCE in libc.so.6
Discord-Cache-Exploit-POC - Exploit Discord's cache system to remote upload payloads on Discord users machines [Moved to: https://github.com/ecriminal/Exploit-Discord-Cache-System-PoC]
discordrb - Discord API for Ruby
fuelcms-rce - Fuel CMS 1.4 - Remote Code Execution
discord-bugs-exploits - A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.
cve - Gather and update all available and newest CVEs with their PoC.
discord-strava - Connect Strava to Discord.
cisco_asa_research - Cisco ASA Software and ASDM Security Research
Drupalgeddon2 vs docker-compose-drupal
discord-zeroclick-exploit vs one_gadget
Drupalgeddon2 vs Discord-Cache-Exploit-POC
discord-zeroclick-exploit vs discordrb
Drupalgeddon2 vs fuelcms-rce
discord-zeroclick-exploit vs discord-bugs-exploits
Drupalgeddon2 vs cve
discord-zeroclick-exploit vs discord-strava
Drupalgeddon2 vs one_gadget
discord-zeroclick-exploit vs cisco_asa_research