View RSS Feed


  1. Commix : Automated All-in-One OS Command Injection and Exploitation Tool

    Quote Originally Posted by plage View Post
    Hello all, It recently came to my attention a command injection exploitation tool, which has the name commix ( 1 ) and by using it, it is very easy to find and exploit a command injection vulnerability in a certain vulnerable parameter or string.

    Commix seems to be a great command injection tool which successfully exploits many vulnerable applications such as DVWA, bWAPP, ShelLOL, Persistence, Kioptrix(2014), w3af-moth etc.

    I found references on that tool in many sites,