git-dumper
CVE-2022-44268
git-dumper | CVE-2022-44268 | |
---|---|---|
2 | 3 | |
1,631 | 202 | |
- | - | |
6.7 | 10.0 | |
about 2 months ago | about 1 year ago | |
Python | Rust | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
git-dumper
-
HTB - Pilgrimage Writeup
Now we know for sure there is a /.git/ folder on the server. Now we can use a tool like Git dumperto extract all of the information from the git folder on to our own machine and take a look at the source code.
- Write-up: Git Exposed, weak password reset and account takeover.
CVE-2022-44268
-
HackTheBox — Writeup Pilgrimage [Retired]
GitHub - voidz0r/CVE-2022-44268: A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
-
HTB - Pilgrimage Writeup
ARBITRARY REMOTE LEAK with CVE-2022-44268
- CVE-2022-44268 - Arbitrary File Read PoC - PNG generator
What are some alternatives?
devops-exercises - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions
imagemagick-lfi-poc - ImageMagick LFI PoC [CVE-2022-44268]
dev-setup - macOS development environment setup: Easy-to-understand instructions with automated setup scripts for developer tools like Vim, Sublime Text, Bash, iTerm, Python data analysis, Spark, Hadoop MapReduce, AWS, Heroku, JavaScript web development, Android development, common data stores, and dev-based OS X defaults.
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
100-redteam-projects - Projects for security students
ImageMagick - 🧙♂️ ImageMagick 7
binwalk - Firmware Analysis Tool
GitTools - A repository with 3 tools for pwn'ing websites with .git repositories available