1035 Open source projects that are alternatives of or similar to CVE-2021-41773_CVE-2021-42013

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Writeup of CVE-2020-15906

C++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)

Exploit Discord's cache system to remote upload payloads on Discord users machines

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Hide your payload into .jpg file

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Extraction of iMessage Data via XSS

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

Git All the Payloads! A collection of web attack payloads.

Extensible framework for analyzing publicly available information about vulnerabilities

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Multiplatform payload dropper

Hourly updated database of exploit and exploitation reports

DoS PoC's for SAP products

This powershell script has got to run in remote hacked windows host, even for pivoting

Misc. Public Reports of Penetration Testing and Security Audits.

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

SQL Injection Payload List

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

Multi source CVE/exploit parser.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

汽车/安卓/固件/代码安全测试工具集

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Proxy token to allow mitigating EOSIO Ram exploit

Pentest/BugBounty progress control with scanning modules

A TypeScript boilerplate for combining Payload and NextJS into a single Express server

Deploy a secured, clustered, auto-scaling NiFi service in AWS.

OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).

An All-In-One Pure Python PoC for CVE-2021-44228

Unsigned code loader for Exynos BootROM

Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.

Hive Storage Handler for interoperability between BigQuery and Apache Hive

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

nuclei framework scripts

Custom security distro for remote penetration testing

Cheat-Sheet of tools for penetration testing

Fast website scraper and wordlist generator

Docker Container with PHP7, MySQL 5.7 and OXID eShop 6

Golang Client for Schema Registry

kernel-pwn and writeup collection

一些漏洞分析

CRAX: software CRash analysis for Automatic eXploit generation

A collection of JavaScript Codes I've made to enhance the User Experience of Discord and some other Discord related stuff

OpenSSH remote DOS exploit and vulnerable container

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

Some of my public exploits

log4j rce test environment and poc

Python Powered Repository

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Python script to decrypt passwords stored by mRemoteNG

A minimalist re-implementation of the Fusée Gelée exploit (http://memecpy.com), designed to run on embedded Linux devices. (Zero dependencies)