NetelfRun executables from memory, over the network, on Windows, Linux, OpenVMS... routers... spaceships... toasters etc.
Cve 2020 16898CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule
XrcrossXRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
DdoorDDoor - cross platform backdoor using dns txt records
Cve 2019 7609exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
Gitlab rceRCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
GopherusThis tool generates gopher link for exploiting SSRF and gaining RCE in various servers
CiscoexploitCisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Java Sec CodeJava web common vulnerabilities and security code which is base on springboot and spring security
Cve 2018 18852CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
HiddenWindows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
SirepratRemote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)
Penetration testing poc渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Cve 2019 1003000 Jenkins Rce PocJenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
Jenkins Rce😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
DamnwebscannerAnother web vulnerabilities scanner, this extension works on Chrome and Opera
CVE-2018-19276CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
SecExampleJAVA 漏洞靶场 (Vulnerability Environment For Java)
agentgoHi! Agentgo is a tool for making remote command executions from server to client with golang, protocol buffers (protobuf) and grpc.
CVE-2022-21907-http.sysProof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
Umbraco-RCEUmbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
OSCESome exploits, which I’ve created during my OSCE preparation.
RCE-python-oneliner-payloadPython bind shell single line code for both Unix and Windows, used to find and exploit RCE (ImageMagick, Ghostscript, ...)
PwnX.py🏴☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit
exploit-CVE-2015-3306ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container
rceDistributed, workflow-driven integration environment