397 Open source projects that are alternatives of or similar to goMS17-010

A repository full of malware samples.

One of the few malware collection

CryptoLocker is open source files encrypt-er. Crypto is developed in Visual C++. It has features encrypt all file, lock down the system and send keys back to the server. Multi-threaded functionality helps to this tool make encryption faster.

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

Extensible framework for analyzing publicly available information about vulnerabilities

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

An overlay attack example

Unrestricted Lua Execution

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

Exploiting challenges in Linux and Windows

Python script to decrypt passwords stored by mRemoteNG

A collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware

Network based protocol fuzzer

Kubernetes security and vulnerability tools and utilities.

A Ruby micro-framework for writing and running exploits

Windows MSI Installer LPE (CVE-2021-43883)

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

My exploitDB.

BadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit

Framework for rapid development and reusable of security tools

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations

RootMyTV is a user-friendly exploit for rooting/jailbreaking LG webOS smart TVs.

Simple ransomware to troll your friends. Encrypt and Decrypt a Windows computer using a simple xor encryption which is pretty basic!

Self defense post module for metasploit

⛷ A collection of hacker scripts.

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

CTF binary exploit code

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

CamOver is a camera exploitation tool that allows to disclosure network camera admin password.

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

Guest to host VM escape exploit for Parallels Desktop

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

This repo is a collection of Ransomware reports from vendors, researchers, etc.

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

CTF中Pwn的快速利用模板（包含awd pwn）

Python Powered Repository

Ruby tool to decrypt Nemucod ransomware

Blazing fast, advanced Padding Oracle exploit

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Rage allows you to execute any file in a Microsoft Office document.

Vulnerable software and exploits used for OSCP/OSCE preparation

Simple Ransomware Tool in Pure Java

gtfo, now with the speed of golang

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Simple script that utilities discord's flaw in detecting who blocked who.

Collection of different exploits

CRAX: software CRash analysis for Automatic eXploit generation

Windows Elevation(持续更新)

A minimalist re-implementation of the Fusée Gelée exploit (http://memecpy.com), designed to run on embedded Linux devices. (Zero dependencies)

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

A decoder for Petya victim keys, using the Janus' masterkey.

Powerful dork searcher and vulnerability scanner for windows platform

Advanced Web Browser Fingerprinting

Authentication bypass for outdated WoW emulation authentication servers