Top 343 exploit open source projects

POC code to crash Windows Event Logger Service

Proxy token to allow mitigating EOSIO Ram exploit

Unsigned code loader for Exynos BootROM

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

kernel-pwn and writeup collection

A collection of JavaScript Codes I've made to enhance the User Experience of Discord and some other Discord related stuff

OpenSSH remote DOS exploit and vulnerable container

Some of my public exploits

Simple and fast discord token cracker

Focus on cybersecurity | collection of PoC and Exploits

A remote administration tool for Windows, written in C#

Framework for exploiting local vulnerabilities

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

AliGuard PHP WAF

Exploit PollDaddy polls

radare2 IO plugin for Linux and Android. Modifies files owned by other users via dirtycow Copy-On-Write cache vulnerability

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

Metasploit framework with steroids

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

Hack The Printer

GitLab CE/EE Preauth RCE using ExifTool

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

DoS PoC's for SAP products

Proof of concept of VMSA-2017-0012

Webshell Jumping Edition

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

🛠️ Tool to bypass my school's security system to get sudo privileges on MacOS

PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM

rsGen is a Reverse Shell Payload Generator for hacking.

Brahma - Privilege elevation exploit for Nintendo 3DS

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

Drupal < 7.58 - Drupalgeddon 3 Authenticated Remote Code Execution (Metasploit)

ARM rop chain gadget searcher

Hourly updated database of exploit and exploitation reports

free exploit framework written use python language version 3.3

Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Extraction of iMessage Data via XSS

POC script for the ManageEngine Multiple Products Authenticated File Upload Exploit