IdacyberData Visualization Plugin for IDA Pro
InjectopiA set of tutorials about code injection for Windows.
CommixAutomated All-in-One OS Command Injection Exploitation Tool.
Insecureprogrammingmirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/
ShellabLinux and Windows shellcode enrichment utility
TigersharkBilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.
Cve 2019 9810Exploit for CVE-2019-9810 Firefox on Windows 64-bit.
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Ciscorv320dumpCVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!
XropTool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Vulnerable KextA WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation
BlisqyVersion 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Xerrorfully automated pentesting tool
KarkinosA thorough library database to assist with binary exploitation tasks.
Mqtt PwnMQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and security assessment operations.
FlashsploitExploitation Framework for ATtiny85 Based HID Attacks
RopaGUI tool to create ROP chains using the ropper API
Magisk Frida🔐 Run frida-server on boot with Magisk, always up-to-date
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
FuxploiderFile upload vulnerability scanner and exploitation tool.
BlazefoxBlazefox exploits for Windows 10 RS5 64-bit.
IsoallocA general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance
Poc T渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
PakuriPenetration test Achieve Knowledge Unite Rapid Interface
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
ArissploitArissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
OseeCollection of resources for my preparation to take the OSEE certification.
SsrfmapAutomatic SSRF fuzzer and exploitation tool
BadpodsA collection of manifests that will create pods with elevated privileges.
WinpwnAutomation for internal Windows Penetrationtest / AD-Security
EggshelliOS/macOS/Linux Remote Administration Tool
Tidos FrameworkThe Offensive Manual Web Application Penetration Testing Framework.
On PwningMy solutions to some CTF challenges and a list of interesting resources about pwning stuff
RopperDisplay information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper uses the awesome Capstone Framework.
BafBlind Attacking Framework
PwinSecurity Evaluation of Dynamic Binary Instrumentation Engines
Binary ExploitationGood to know, easy to forget information about binaries and their exploitation!
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
FoxpwnExploit code for CVE-2016-9066
PysploitRemote exploitation framework written in Python