612 Open source projects that are alternatives of or similar to Exploits

Some personal exploits/pocs

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

鹿不在侧，鲸不予游🐋

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

CTF programs and writeups

🐈Medusa是一个红队武器库平台，目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能，持续开发中 http://medusa.ascotbe.com

RouterOS Security Research Tooling and Proof of Concepts

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

✍️ A curated list of CVE PoCs.

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

The Correlated CVE Vulnerability And Threat Intelligence Database API

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

PoC materials for article https://habr.com/en/post/486856/

Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Exploiting challenges in Linux and Windows

No description or website provided.

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

PatrowlHears - Vulnerability Intelligence Center / Exploits

Poc Collected for study and develop

Micro-framework for rapid development of reusable security tools

🌴Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file

Containing Self Made Perl Reproducers / PoC Codes

A collection of curated Java Deserialization Exploits

Miscellaneous exploit code

A social experiment

Web CTF CheatSheet 🐈

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

CTF Challenge Framework for Windows 8 and above

SpectreExploit POC

🔥 An Exploit framework for Web Vulnerabilities written in Python

Fast Steganography bruteforce tool written in Rust useful for CTF's

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Reversing list

Repository for information about 0-days exploited in-the-wild.

🎁A convenient glibc binary and debug file downloader and source code auto builder

CVE-2020-1206 Uninitialized Kernel Memory Read POC

2018强网杯CTF___题目整理

Source code, writeups and exps in LCTF2018.

Ctf solutions from p4 team

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

A tool to test security of json web token

Writeups of Capture The Flag Competitions

collection poc use pocsuite framework 收集一些 poc with pocsuite框架

Transcribed video lessons of HackerOne to pdf's

Exploitation Framework for Embedded Devices

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Scoreboard for Capture The Flag competitions.

This repo records all the vulnerabilities of linux software I have reproduced in my local workspace

cve-search - a tool to perform local searches for known vulnerabilities

Collection of resources for my preparation to take the OSEE certification.

Automatic SSRF fuzzer and exploitation tool

Script to setup pwn environment for CTF with Docker