Awesome Open Source

Programming Languages

Search results for exploitation rce

19 search results found

Penetration_testing_poc ⭐ 5,946

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Poc In Github ⭐ 5,704

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Ssrfmap ⭐ 2,306

Automatic SSRF fuzzer and exploitation tool

Gopherus ⭐ 2,228

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

One_gadget ⭐ 1,897

The best tool for finding one gadget RCE in libc.so.6

Awesome Rce Techniques ⭐ 1,718

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

Pwn_jenkins ⭐ 1,693

Notes about attacking Jenkins servers

Springbootvulexploit ⭐ 1,631

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

Exploits ⭐ 1,484

Miscellaneous exploit code

Jexboss ⭐ 1,470

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

V3n0m Scanner ⭐ 1,342

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Pentest_compilation ⭐ 1,251

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

Attack surface mapping

Singularity ⭐ 937

A DNS rebinding attack framework.

Redis Rogue Server ⭐ 852

Redis(<=5.0.5) RCE

Windows Rce Exploits ⭐ 731

The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samples are uploaded for education purposes for red and blue teams.

A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.

Redis Rce ⭐ 671

Redis 4.x/5.x RCE

Cve 2017 0199 ⭐ 622

Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

for mass exploiting

Asiagaming ⭐ 420

My Chrome and Safari exploit code + write-up repo

Commodity Injection Signatures ⭐ 364

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Sireprat ⭐ 360

Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

Exploit Cve 2017 7494 ⭐ 328

SambaCry exploit and vulnerable container (CVE-2017-7494)

Webcgi Exploits ⭐ 314

Multi-language web CGI interfaces exploits.

Cve 2017 8759 ⭐ 309

Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

Jenkins Rce ⭐ 294

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

Awesome Exploit ⭐ 283

一个漏洞利用工具仓库

Cve 2023 21608 ⭐ 260

Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit

Cve 2019 1003000 Jenkins Rce Poc ⭐ 254

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

Apache Solr Rce ⭐ 250

Apache Solr Exploits 🌟

Cisco Snmp Rce ⭐ 224

Cisco IOS SNMP RCE PoC

Redis Rogue Server ⭐ 199

Redis 4.x/5.x RCE

Cve 2020 16898 ⭐ 197

CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule

Ps4 6.20 Webkit Code Execution Exploit ⭐ 196

A WebKit exploit using CVE-2018-4441 to obtain RCE on PS4 6.20.

Cve 2020 2551 ⭐ 195

how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP

Ciscorv320dump ⭐ 188

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!

Cve 2017 7494 ⭐ 178

Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)

Cisco Rce ⭐ 166

CVE-2017-3881 Cisco Catalyst Remote Code Execution PoC

Spring Boot Actuator Exploit ⭐ 139

Spring Boot Actuator (jolokia) XXE/RCE

Exploit Framework ⭐ 139

🔥 An Exploit framework for Web Vulnerabilities written in Python

Scriptsandexploits ⭐ 137

Some scripts and exploits

No Sandbox ⭐ 137

No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/

Chakra 2016 11 ⭐ 131

Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)

Cve_2020_2546 ⭐ 129

CVE-2020-2546，CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc python3,

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Cve 2019 11539 ⭐ 125

Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect

Go4hacker ⭐ 123

Automated penetration and auxiliary systems, providing XSS, XXE, DNS log, SSRF, RCE, web netcat and other Servers,gin-vue-admin，online https://51pwn.com

Cve_2019_0708_bluekeep_rce ⭐ 121

bluekeep exploit

Cve 2022 28672 ⭐ 115

Foxit PDF Reader Remote Code Execution Exploit

Ds3 Nrssr Rce ⭐ 113

Documentation and proof of concept code for CVE-2022-24125 and CVE-2022-24126.

Cve 2023 38831 Rarce ⭐ 110

An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23

Security ⭐ 105

General Security Scripts

Tp5 Getshell ⭐ 105

thinkphp5 rce getshell

Rails Doubletap Rce ⭐ 100

RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)

Redis Rogue Getshell ⭐ 99

redis 4.x/5.x master/slave getshell module

Exploits_and_advisories ⭐ 94

Repository that tracks public exploits, vulnerabilities and advisories that I [co-]discovered or [co-]authored.

Sap_gw_rce_exploit ⭐ 94

SAP Gateway RCE exploits

Bypass Php Gd Process To Rce ⭐ 91

Reference: http://www.secgeek.net/bookfresh-vulnerability/

Tomcat Webshell Application ⭐ 85

A webshell application and interactive shell for pentesting Apache Tomcat servers.

Cve 2022 36446 Webmin Software Package Updates Rce ⭐ 76

A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.

Cve 2019 7609 ⭐ 68

exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts

Chall.stypr.com ⭐ 57

Stereotyped Challenges (2014~2023)

Grandstream_exploits ⭐ 56

Cve 2022 45025 ⭐ 55

[PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)

Gogsownz ⭐ 54

Umbraco Rce ⭐ 54

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Some exploits, which I’ve created during my OSCE preparation.

Cve 2023 27372 ⭐ 51

SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.

Exploit Cve 2015 3306 ⭐ 50

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Cve Repository ⭐ 49

🪲 Repository of CVE found by OCD people

Cve 2023 6553 ⭐ 49

Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution

Ciscoexploit ⭐ 47

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

Cve 2021 41773 ⭐ 47

Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773

Ztexploit ⭐ 46

ZTE ZXV10 H108L Router with <= V1.0.01_WIND_A01 - Remote root RCE Exploit

Repo for proof of concept exploits and tools.

Codiad Remote Code Execute Exploit ⭐ 42

A simple exploit to execute system command on codiad

Cve 2018 11235 ⭐ 42

PoC exploit for CVE-2018-11235 allowing RCE on git clone --recurse-submodules

Exploits ⭐ 41

Some personal exploits/pocs

Cve 2022 45771 Pwndoc Lfi To Rce ⭐ 40

Pwndoc local file inclusion to remote code execution of Node.js code on the server

Sap_vulnerabilities ⭐ 40

DoS PoC's for SAP products

Cve 2018 18852 ⭐ 40

CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.

Unshift Racy ⭐ 39

Webkit JavascriptCore Array unshift function had a race condition, it leads to RCE.

Sambahunter ⭐ 39

It is a simple script to exploit RCE for Samba (CVE-2017-7494 ).

Mycroftai Rce ⭐ 39

"Zero Click" Remote Code Execution in Mycroft AI vocal assistant

Flink Unauth Rce ⭐ 37

exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts

S2 053 Cve 2017 12611 ⭐ 36

A simple script for exploit RCE for Struts 2 S2-053(CVE-2017-12611)

D Link Dir 859 Rce ⭐ 35

D-Link DIR-859 - RCE UnAutenticated (CVE-2019–17621)

Apache Solr <=8.2.0 Velocity Template 0day Exploit

Exploit Cve 2016 9920 ⭐ 34

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

WD My Cloud PoC exploit

Cve 2019 15107 ⭐ 26

Cve 2020 5902 ⭐ 26

exploit code for F5-Big-IP (CVE-2020-5902)

General Scripts to help with various types of SQL Injection

Remote Code Execution Sample ⭐ 24

Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.

Cve 2022 35405 ⭐ 23

ManageEngine PAM360, Password Manager Pro, and Access Manager Plus unauthenticated remote code execution vulnerability PoC-exploit

Joomlamassexploiter ⭐ 22

[discontinued] Mass exploiter of CVE 2015-8562 for Joomla! CMS

Related Searches

Python Exploitation (1,616)

Exploitation Cve (771)

Vulnerabilities Exploitation (624)

C Exploitation (545)

Exploitation Penetration Testing (353)

Python Rce (262)

1-19 of 19 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.