449 Open source projects that are alternatives of or similar to Gr33k

Advanced vulnerability scanning with Nmap NSE

Advanced Web Browser Fingerprinting

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

hack tools

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Apache Shiro 反序列化漏洞检测与利用工具

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

python3批量poc检测工具

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

SQL Injection Payload List

OWASP Joomla Vulnerability Scanner Project

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

Hourly updated database of exploit and exploitation reports

CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

A number of scripts POC's and problems solved as pentests move along.

A collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

Extensible framework for analyzing publicly available information about vulnerabilities

Kubernetes security and vulnerability tools and utilities.

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

Guest to host VM escape exploit for Parallels Desktop

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

Collection of different exploits

Network based protocol fuzzer

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

A Ruby micro-framework for writing and running exploits

Kubernetes Native, Runtime Container Image Scanning

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

⛷ A collection of hacker scripts.

👓 Yet another binary vulnerbilities checker. An automated vulnerability scanner for ELF based on symbolic execution.

CTF binary exploit code

Powerful dork searcher and vulnerability scanner for windows platform

CamOver is a camera exploitation tool that allows to disclosure network camera admin password.

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

《白帽子讲Web扫描》书籍参考代码

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

CTF中Pwn的快速利用模板（包含awd pwn）

OSPd is a framework for vulnerability scanners which share the same communication protocol: OSP (Open Scanner Protocol)

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

Windows MSI Installer LPE (CVE-2021-43883)

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

Unrestricted Lua Execution

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

An overlay attack example

Blazing fast, advanced Padding Oracle exploit

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Python Powered Repository

Framework for rapid development and reusable of security tools

Exploiting challenges in Linux and Windows

Agent scanner for vulners.com

My exploitDB.

Rage allows you to execute any file in a Microsoft Office document.

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

BadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit