896 Open source projects that are alternatives of or similar to Exploit-Development

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.73

A social experiment

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.68

Some personal exploits/pocs

Trinity Exploit - Emulator Escape

ROP Benchmark is a tool to compare ROP compilers

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

Very simple script(s) to hasten binary exploit creation

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

Working Python test and PoC for CVE-2018-11776, includes Docker lab

some experience in CTFs

🦄🔒 Awesome list of secrets in environment variables 🖥️

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI

Framework to test any Anti-Cheat

Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc

PoC materials for article https://habr.com/en/post/486856/

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

Blueborne CVE-2017-0781 Android heap overflow vulnerability

Exploit Code for CVE-2020-1472 aka Zerologon

💣 Remotely render any nearby iPhone or iPad unusable

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

Focus on cybersecurity | collection of PoC and Exploits

Proof of concept code for the Spectre CPU exploit.

ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)

DoS PoC's for SAP products

linux-kernel-exploits Linux平台提权漏洞集合

Various kernel exploits

windows-kernel-exploits Windows平台提权漏洞集合

Linux local root exploit for CVE-2014-0038

Bluefrost Exploitation Challenge 2019 - Exploit and Writeup

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Windows MSI Installer LPE (CVE-2021-43883)

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

Guest to host VM escape exploit for Parallels Desktop

Focus on cybersecurity | collection of PoC and Exploits

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

A number of scripts POC's and problems solved as pentests move along.

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

A blazing fast™ multithreaded ROP Gadget finder. ropper / ropgadget alternative

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers

Solutions for ROP Emporium challenges (https://ropemporium.com/) in python.

Misc. Public Reports of Penetration Testing and Security Audits.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能