221 Open source projects that are alternatives of or similar to 0days In The Wild

A collection of electronic hacker magazines carefully curated over the years from multiple sources

异步漏洞利用框架

kernel privilege escalation enumeration and exploitation framework

PatrowlHears - Vulnerability Intelligence Center / Exploits

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

This repo has been migrated to https://github.com/github/security-lab/tree/master/SecurityExploits

Advisories, proof of concept files and exploits that have been made public by @pedrib.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

An advanced graphical search engine for Exploit-DB

S2E: A platform for multi-path program analysis with selective symbolic execution.

Documentation and Tools for Cisco's PSIRT openVuln API

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

A curated list of vulnerable web applications.

Exploitation Framework for Embedded Devices

Find exploits in local and online databases instantly

This custom Fail2Ban filter and jail will deal with all scans for common Wordpress, Joomla and other Web Exploits being scanned for by automated bots and those seeking to find exploitable web sites.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Security and Hacking Tools, Exploits, Proof of Concepts, Shellcodes, Scripts.

The Swiss Army knife for automated Web Application Testing

🌴Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file

A list of resources in different fields of Computer Science (multiple languages)

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.

A curated list of awesome Solidity resources

A database of PHP security advisories

Sniffer vulnerabilities in http request (chrome extension)

Vulnerable Web applications Generator

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

Damn Vulnerable Web Application Docker container

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

Collection of things made during my preparation to take on OSEE

PoC materials for article https://habr.com/en/post/486856/

Miscellaneous exploit code

cve-search - a tool to perform local searches for known vulnerabilities

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Collection of resources for my preparation to take the OSEE certification.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

🔥 An Exploit framework for Web Vulnerabilities written in Python

Micro-framework for rapid development of reusable security tools

HackSys Extreme Vulnerable Windows Driver

Vulnerability Static Analysis for Containers

Penetration test Achieve Knowledge Unite Rapid Interface

Exploitation on different architectures (x86, x64, arm, mips, avr)

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

A Ruby framework designed to aid in the penetration testing of WordPress systems.

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

The Correlated CVE Vulnerability And Threat Intelligence Database API

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Nailgun attack on ARM devices.

Awesome Node.js Security resources

Open-Source Security Architecture | 开源安全架构

Find security vulnerabilities in open source npm packages while you code

SD-WAN security and insecurity