342 Open source projects that are alternatives of or similar to Cve 2017 11882

Malicious use of macho, such as dump-runtime-macho, function-hook.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

This is a list of Discord console scripts, bugs and exploits.

Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation

Network based protocol fuzzer

Real world and CTFs exploiting web/binary POCs.

One of the few malware collection

Apache Shiro 反序列化漏洞检测与利用工具

An overlay attack example

Yet Another PHP Shell - The most complete PHP reverse shell

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

🦄🔒 Awesome list of secrets in environment variables 🖥️

A simple PHP application to learn SQL Injection detection and exploitation techniques.

Remot3d: is a simple tool created for large pentesters as well as just for the pleasure of defacers to control server by backdoors

block game military grade radar

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

A collection of Destiny 2 macros built with AutoHotKey

Authentication bypass for outdated WoW emulation authentication servers

an RCE (remote command execution) approach of CVE-2018-7750

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

CVE-2021-3449 OpenSSL denial-of-service exploit 👨🏻‍💻

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

CTF中Pwn的快速利用模板（包含awd pwn）

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

Very simple script(s) to hasten binary exploit creation

SambaCry exploit and vulnerable container (CVE-2017-7494)

Experiments on C/C++ Exploits

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

This powershell script has got to run in remote hacked windows host, even for pivoting

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

图形化漏洞利用集成工具

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

Reverse Shell Cheat Sheet TooL

Powerful dork searcher and vulnerability scanner for windows platform

SQL Injection Payload List

My exploitDB.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Advanced Web Browser Fingerprinting

Open Mesh OM5P-AC v2 Unlocker (U-Boot 1.1.4 based)

A Ruby micro-framework for writing and running exploits

Patch for Waterfall to improve performance during attacks and fix memory issues.

Rage allows you to execute any file in a Microsoft Office document.

log4j2 remote code execution or IP leakage exploit (with examples)

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Multi-language web CGI interfaces exploits.

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

My documentation and tools for learn ethical hacking.

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)

Misc. Public Reports of Penetration Testing and Security Audits.

macOS Kernel Exploit for CVE-2019-8781. Credit for the bug goes to @LinusHenze :)

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. Blackcat keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture system screenshot and send to ftp server in given time.

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

Eternalblue written in CSharp. Contains version detection, vulnerability scanner and exploit of MS17-010

Ladon Moudle MS17010 Exploit for PowerShell