637 Open source projects that are alternatives of or similar to Armpwn

🌸 Interactive shellcoding environment to easily craft shellcodes

kernel-pwn and writeup collection

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

A collection of hacking / penetration testing resources to make you better!

The best tool for finding one gadget RCE in libc.so.6

Web wrapper of niklasb/libc-database

A hyper plugin to provide a flexible GDB GUI with the help of GEF, pwndbg or peda

CTF中Pwn的快速利用模板（包含awd pwn）

📢 🔒 Exploit farm for attack-defense CTF competitions

📚 VoidHack CTF write-ups

some experience in CTFs

Exploiting challenges in Linux and Windows

Some of my CTF solutions

CTF framework and exploit development library

CTF竞赛权威指南

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

Framework for rapid development and reusable of security tools

Very simple script(s) to hasten binary exploit creation

CTF solutions from Osaka University CTF team Wani Hackase

CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.

Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)

Eternalblue written in CSharp. Contains version detection, vulnerability scanner and exploit of MS17-010

Hacker101 CTF Writeup

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

QCTF School 2018. Developed with ♥ by Hackerdom team

Pure-python distributable Attack-Defence CTF platform, created to be easily set up.

Patch for Waterfall to improve performance during attacks and fix memory issues.

The iCTF Framework, presented by Shellphish!

an RCE (remote command execution) approach of CVE-2018-7750

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Cross-platform CTF problem container manager

macOS Kernel Exploit for CVE-2019-8781. Credit for the bug goes to @LinusHenze :)

Capture the flag Game

Pwnable|Web Security|Cryptography CTF-style challenges

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. Blackcat keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture system screenshot and send to ftp server in given time.

A collection of android Exploits and Hacks

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

🦄🔒 Awesome list of secrets in environment variables 🖥️

Capture The Flag Information

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Real world and CTFs exploiting web/binary POCs.

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

An exploit for Apache Struts CVE-2018-11776

all mine papers, pwn & exploit

Multi-language web CGI interfaces exploits.

EmpireCTF – write-ups, capture the flag, cybersecurity

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

SQL Injection Payload List

Perfect Blue's CTF Writeups

SambaCry exploit and vulnerable container (CVE-2017-7494)

This is a list of Discord console scripts, bugs and exploits.

PHDays Online CTF 2017. Developed with ♥ by Hackerdom team

AWD攻防赛webshell批量利用框架

Open Mesh OM5P-AC v2 Unlocker (U-Boot 1.1.4 based)

Tutorials written by me.