621 Open source projects that are alternatives of or similar to Exploits

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

CVE-2019-1458 Windows LPE Exploit

This powershell script has got to run in remote hacked windows host, even for pivoting

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Tool to help exploit XXE vulnerabilities

This is a complete project series on implementing hacking tools available in Kali Linux into python.

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

物联大师是开源免费的物联网智能网关系统，集成了标准Modbus和主流PLC等多种协议，支持数据采集、公式计算、定时控制、自动控制、异常报警、流量监控、Web组态、远程调试等功能，适用于大部分物联网和工业互联网应用场景。

POC code to crash Windows Event Logger Service

Yet Another PHP Shell - The most complete PHP reverse shell

Proof of concept code for the Spectre CPU exploit.

An overlay attack example

A collection of my public security advisories.

share some useful archives about vm and qemu escape exploit.

A social experiment

Hide your payload into .jpg file

🐛 A plug-in of sublime 2/3 which is able to find PHP vulnerabilities

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)

CryptoLocker is open source files encrypt-er. Crypto is developed in Visual C++. It has features encrypt all file, lock down the system and send keys back to the server. Multi-threaded functionality helps to this tool make encryption faster.

Malicious use of macho, such as dump-runtime-macho, function-hook.

A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854

kernel-pwn and writeup collection

Blueborne CVE-2017-0781 Android heap overflow vulnerability

RootMyTV is a user-friendly exploit for rooting/jailbreaking LG webOS smart TVs.

OpenSSH remote DOS exploit and vulnerable container

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

Focus on cybersecurity | collection of PoC and Exploits

ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.

NSA Hacking Tool Recreation UnitedRake

Collection of different exploits

Simple and fast discord token cracker

Python Powered Repository

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.73

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

when i started web application security testing, i fall in love with web shell development and designed some PHP based web shells. This repository contains all my codes which i released in public.

A remote administration tool for Windows, written in C#

pentest framework

CTF windows pwntools

Automated Twitter mass account creation and follow using Selenium and Tor VPN

Phantom eye——A passive business logic vulnerability auditing tool

My fuzzing corpus

💼 Pools organized for Epitech's students in 2020.

Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".

The Lost Nintendo DS Television Output, brought back to life

Roblox Exploit Source Code Called IceMeme with some cmds, lua c and limited lua execution with simple ui in c#

📚 Yet another CTF writeups repository. PWN and RE tasks

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

Writeup of CVE-2020-15906

block game military grade radar

NekoBot | Auto Exploiter With 500+ Exploit 2000+ Shell

JAVA 漏洞靶场 (Vulnerability Environment For Java)

Rage allows you to execute any file in a Microsoft Office document.

My solutions to the 2020 NSA Codebreaker Challenge

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

Current home of rubysec.com

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

A Network Enumeration and Attack Toolset for Windows Active Directory Environments.