1196 Open source projects that are alternatives of or similar to CVE-2021-33766

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Misc. Public Reports of Penetration Testing and Security Audits.

Proofs-of-concept

Working Python test and PoC for CVE-2018-11776, includes Docker lab

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

My exploitDB.

Advanced Web Browser Fingerprinting

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

Python client for Microsoft Exchange Web Services (EWS)

Windows Exploit Suggester - Next Generation

PoC materials for article https://habr.com/en/post/486856/

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

Safari local file reader

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

💣 Remotely render any nearby iPhone or iPad unusable

MFCMAPI

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

Rage allows you to execute any file in a Microsoft Office document.

Some of my public exploits

A simple JSON wrapper for the Exchange Web Services (EWS) SOAP API.

Unsigned code loader for Exynos BootROM

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

PoC exploit for CVE-2016-4622

Powerful dork searcher and vulnerability scanner for windows platform

Reverse Shell as a Service

CVE-2020-0688_EXP Auto trigger payload & encrypt method

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Advanced vulnerability scanning with Nmap NSE

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Exploit Code for CVE-2020-1472 aka Zerologon

Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

Proof of concept code for the Spectre CPU exploit.

Word 2016 vulnerability allows injecting HTML/JS code into a docx file's embeddedHTML="" tags.

A social experiment

DoS PoC's for SAP products

Proof of concept of VMSA-2017-0012

Unofficial Self-Service Web Portal for Veeam Backup for Microsoft Office 365

rsGen is a Reverse Shell Payload Generator for hacking.

Focus on cybersecurity | collection of PoC and Exploits

Exchange Analyzer - Checks Exchange Server 2013 or 2016 organizations for common configuration issues and recommended practices.

CVE-2020-11651: Proof of Concept

Guest to host VM escape exploit for Parallels Desktop

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Script to remove duplicate items from Exchange mailboxes.

Manage Microsoft 365 with PowerShell

Extensible framework for analyzing publicly available information about vulnerabilities

Kubernetes security and vulnerability tools and utilities.

Juniper Junos Space (CVE-2020-1611) (PoC)

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

Blueborne CVE-2017-0781 Android heap overflow vulnerability

Extraction of iMessage Data via XSS