Awesome Open Source

Programming Languages

Search results for exploitation cve

60 search results found

Red Teaming Toolkit ⭐ 8,230

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Awesome Hacker Search Engines ⭐ 6,307

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Penetration_testing_poc ⭐ 5,946

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Gather and update all available and newest CVEs with their PoC.

Poc In Github ⭐ 5,704

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Linux Kernel Exploitation ⭐ 5,116

A collection of links related to Linux kernel security and exploitation

Jwt_tool ⭐ 4,639

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Kernelhub ⭐ 2,705

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

Exphub ⭐ 2,458

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的

Sudo_killer ⭐ 2,032

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

Sshtron ⭐ 2,018

$ ssh sshtron.zachlatta.com

Pwn_jenkins ⭐ 1,693

Notes about attacking Jenkins servers

Phuip Fpizdam ⭐ 1,570

Exploit for CVE-2019-11043

Jexboss ⭐ 1,470

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

Kernel Exploits ⭐ 1,265

My proof-of-concept exploits for the Linux kernel

Attack surface mapping

Moonwalk ⭐ 1,033

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

Windows Exploits ⭐ 1,005

This project is only used for vulnerability verification to help security engineers better understand the system and carry out repair work. Please do not use it for other purposes.

Vulnerability Labs for security analysis

Cve 2020 0796 ⭐ 874

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

The Correlated CVE Vulnerability And Threat Intelligence Database API

Pocorexp_in_github ⭐ 786

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Shellshocker Pocs ⭐ 775

Collection of Proof of Concepts and Potential Targets for #ShellShocker

漏洞批量验证框架

A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.

Cve 2023 38831 Winrar Exploit ⭐ 705

CVE-2023-38831 winrar exploit generator

Scalpel ⭐ 695

scalpel是一款命令行漏洞扫描工具，支持深度参数注入，拥有一个强大的数据解析和变异算法，可以将常 xml, form等）解析为树结构，然后根据poc中的规则，对树进行变异，包括对叶子节点和树结构的变异。变异完成之后，将树结构还原为原始的数据格式。

Security Data Analysis And Visualization ⭐ 681

2018-2020青年安全圈-活跃技术博主/博客

Spectre Attack ⭐ 662

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

Gobyvuls ⭐ 650

Vulnerabilities of Goby supported with exploitation.

Nuclei Wordfence Cve ⭐ 627

You just found a hidden gem 💎 This repo contains a massive amount (9,000+) of WordPress related Nuclei templates. Updated daily!

Cve 2017 0199 ⭐ 622

Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

Cve 2021 44228 Poc Log4j Bypass Words ⭐ 611

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Clusterd ⭐ 609

application server attack toolkit

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

Kernelpop ⭐ 594

kernel privilege escalation enumeration and exploitation framework

Exploit_playground ⭐ 571

Analysis of public exploits or my 1day exploits

Cve 2019 11708 ⭐ 569

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

Exploits ⭐ 568

A handy collection of my public exploits, all in one place.

Java Deserialization Exploits ⭐ 562

A collection of curated Java Deserialization Exploits

Cve 2019 5736 Poc ⭐ 551

PoC for CVE-2019-5736

Am I Affected By Meltdown ⭐ 547

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Cve 2018 10933 ⭐ 494

Spawn to shell without any credentials by using CVE-2018-10933 (LibSSH)

Cve 2018 8120 ⭐ 489

CVE-2018-8120 Windows LPE exploit

Kernel Exploits ⭐ 485

Various kernel exploits

Cve 2019 19781 ⭐ 483

This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.

Drupalgeddon2 ⭐ 475

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

Cve 2017 11882 ⭐ 464

Proof-of-Concept exploits for CVE-2017-11882

Exploitremotingservice ⭐ 454

A tool to exploit .NET Remoting Services

WebMap-Nmap Web Dashboard and Reporting

Cve 2017 11882 ⭐ 445

CVE-2017-11882 from https://github.com/embedi/CVE-2017-11882

Awesome Vm Exploit ⭐ 439

share some useful archives about vm and qemu escape exploit.

Cve 2018 8120 ⭐ 436

CVE-2018-8120 Windows LPE exploit

Winboxpoc ⭐ 431

Proof of Concept of Winbox Critical Vulnerability (CVE-2018-14847)

Cve 2018 9995_dvr_credentials ⭐ 419

(CVE-2018-9995) Get DVR Credentials

Dirtycow Vdso ⭐ 408

PoC for Dirty COW (CVE-2016-5195)

Office Exploits ⭐ 385

office-exploits Office漏洞集合 https://www.sec-wiki.com

Struts Pwn ⭐ 369

An exploit for Apache Struts CVE-2017-5638

Awesome Csirt ⭐ 368

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

Office Exploit Case Study ⭐ 364

Cve 2019 11510 ⭐ 342

Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)

Cve 2018 7600 ⭐ 331

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

Cve 2019 19781 ⭐ 330

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

Exploit Cve 2017 7494 ⭐ 328

SambaCry exploit and vulnerable container (CVE-2017-7494)

Reconscan ⭐ 324

Network reconnaissance and vulnerability assessment tools.

Cve Maker ⭐ 317

Tool to find CVEs and Exploits.

Eternal_scanner ⭐ 310

An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)

Cve 2017 8759 ⭐ 309

Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

Struts Pwn_cve 2018 11776 ⭐ 300

An exploit for Apache Struts CVE-2018-11776

Daily Info ⭐ 280

Exploits ⭐ 275

exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House

Bluekeep ⭐ 268

Public work for CVE-2019-0708

Cve 2017 11882 ⭐ 267

CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.

Linuxflaw ⭐ 264

This repo records all the vulnerabilities of linux software I have reproduced in my local workspace

Cve 2020 0683 ⭐ 263

CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege

Cve 2018 0802 ⭐ 260

PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)

Cve 2017 8759 Exploit Sample ⭐ 259

Running CVE-2017-8759 exploit sample.

Cve 2019 1003000 Jenkins Rce Poc ⭐ 254

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

Apache Solr Rce ⭐ 250

Apache Solr Exploits 🌟

Struts Pwn_cve 2017 9805 ⭐ 234

An exploit for Apache Struts CVE-2017-9805

事件驱动的渗透测试扫描器 Event-driven pentest scanner

Monitoring exploits & references for CVEs

Cve 2019 13272 ⭐ 226

Linux 4.10 < 5.1.17 PTRACE_TRACEME local root

Cve 2017 7494 ⭐ 224

Remote root exploit for the SAMBA CVE-2017-7494 vulnerability

Explodingcan ⭐ 219

An implementation of NSA's ExplodingCan exploit in Python

Poc_cve 2018 1002105 ⭐ 216

PoC for CVE-2018-1002105.

Keysteal ⭐ 208

A macOS <= 10.14.3 Keychain exploit

Go Exploitdb ⭐ 208

Tool for searching Exploits from Exploit Databases, etc.

Cve 2020 16898 ⭐ 197

CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule

Ps4 6.20 Webkit Code Execution Exploit ⭐ 196

A WebKit exploit using CVE-2018-4441 to obtain RCE on PS4 6.20.

Cve 2020 2551 ⭐ 195

how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP

Cve 2019 9810 ⭐ 192

Exploit for CVE-2019-9810 Firefox on Windows 64-bit.

List of real-world threats against endpoint protection software

Cve 2015 1538 1 ⭐ 191

An exploit for CVE-2015-1538-1 - Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution

Ciscorv320dump ⭐ 188

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!

Cve 2014 0038 ⭐ 187

Linux local root exploit for CVE-2014-0038

Laravel Poc Cve 2018 15133 ⭐ 186

PoC for CVE-2018-15133 (Laravel unserialize vulnerability)

Inthewilddb ⭐ 183

Hourly updated database of exploit and exploitation reports

Vmware_vcenter_cve_2020_3952 ⭐ 181

Exploit for CVE-2020-3952 in vCenter 6.7

Related Searches

Python Exploitation (1,616)

Python Cve (840)

Vulnerabilities Cve (670)

Vulnerabilities Exploitation (629)

C Exploitation (545)

Security Exploitation (395)

Shell Exploitation (388)

Exploitation Penetration Testing (353)

Kernel Exploitation (239)

1-60 of 60 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.