903 Open source projects that are alternatives of or similar to Exphub

Various local exploits

Warbler chirpily constructs .war files of your Ruby applications.

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

Notes about attacking Jenkins servers

Potentially dangerous files

Drupal multisite management tool

generate and search pattern string for exploit development

SQL Vulnerability Scanner

📚 PDF 书籍库

基于SpringBoot+SpringCloud微服务的商城项目（demo版 不可用于生产）

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

A container repository for my public web hacks!

Most Wanted Private and Public PHP Web Shells Can Be Downloaded Here. (Educational Purpose Only)

simpleSAMLphp module that turns Drupal site into IdP(Identity Provider)

List of Magento extensions with known security issues.

A collection of PHP backdoors. For educational or testing purposes only.

CVE-2020-0688_EXP Auto trigger payload & encrypt method

Python3编写的CMS漏洞检测框架

Webshell Manager

Vulnerability Dashboard

Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.

The installation profile for SODA distribution

Awesome webshell collection. Including 150 Github repo, and 200+ blog posts.

This is a webshell open source project

A python based tool for exploiting and managing Android devices via ADB

🐈Medusa是一个红队武器库平台，目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能，持续开发中 http://medusa.ascotbe.com

Automatic SSRF fuzzer and exploitation tool

🌸 Interactive shellcoding environment to easily craft shellcodes

Code-First, Type-Safe, GraphQL Schema Construction

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Extension for PHPStan to allow analysis of Drupal code.

Hacking Charles Web Debugging Proxy

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Sakai is a freely available, feature-rich technology solution for learning, teaching, research and collaboration. Sakai is an open source software suite developed by a diverse and global adopter community.

Cheetah GUI

List of real-world threats against endpoint protection software

Hacking tools

🎯 Command Injection Payload List

A vulnerable iOS App with Security Challenges for the Security Researcher inside you.

Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

基于node-pty、xterm和vue的web terminal服务

OWASP Joomla Vulnerability Scanner Project

Gem vulnerability checker using rubysec/ruby-advisory-db

Raspberry Pi Kubernetes cluster that runs HA/HP Drupal 8

📖 [译] SploitFun Linux x86 Exploit 开发系列教程

Apache Tomcat

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

windows-kernel-exploits Windows平台提权漏洞集合

Penetration tests guide based on OWASP including test cases, resources and examples.

Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具

ADAPT is a tool that performs automated Penetration Testing for WebApps.

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

CryptoLocker is open source files encrypt-er. Crypto is developed in Visual C++. It has features encrypt all file, lock down the system and send keys back to the server. Multi-threaded functionality helps to this tool make encryption faster.

Scan and Export RouterOS Password

Tutorials and Things to Do while Hunting Vulnerability.

JSshell - JavaScript reverse/remote shell

Check if your VPN leaks your IP address via the WebRTC technology

A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

CVE-2020-1206 Uninitialized Kernel Memory Read POC