196 Open source projects that are alternatives of or similar to Cve 2020 0796 Lpe Poc

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

collection poc use pocsuite framework 收集一些 poc with pocsuite框架

Krack POC

Focus on cybersecurity | collection of PoC and Exploits

Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

SpectreExploit POC

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

PoC materials for article https://habr.com/en/post/486856/

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

💣 Remotely render any nearby iPhone or iPad unusable

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

My proof-of-concept exploits for the Linux kernel

DLL Hijacking Detection Tool

Algorithms to re-compute a private key, to fake signatures and some other funny things with Bitcoin.

用cel-go重现了长亭xray的poc检测功能的轮子

prove of concept using angularjs (1.x) accessing github api

ISF(Industrial Security Exploitation Framework) is a exploitation framework based on Python.

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

Poc Collected for study and develop

POC for my Medium article

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Hacking tools

Exploit Code for CVE-2020-1472 aka Zerologon

Automation for internal Windows Penetrationtest / AD-Security

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

A social experiment

Local Privilege Escalation

Python3编写的CMS漏洞检测框架

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

Blueborne CVE-2017-0781 Android heap overflow vulnerability

Cross platform PoC ransomware written in Go

A python script designed to check if the website if vulnerable of clickjacking and create a poc

CVE-2020-1206 Uninitialized Kernel Memory Read POC

Miscellaneous exploit code

poc-collection 是对 github 上公开的 PoC 进行收集的一个项目。

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

A collection of hacking / penetration testing resources to make you better!

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Linux Privilege Escalation Tool By WazeHell

Exploit Discord's cache system to remote upload payloads on Discord users machines

Working Python test and PoC for CVE-2018-11776, includes Docker lab

Privilege Escalation Enumeration Script for Windows

🐩 Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 🐩

ODAT: Oracle Database Attacking Tool

Linux enumeration tool for pentesting and CTFs with verbosity levels

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

image processing codes to understand algorithm

CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.

Python library and client for token manipulations and impersonations for privilege escalation on Windows

鹿不在侧，鲸不予游🐋

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Authenticate against a MySQL server without knowing the cleartext password

Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity