143 Open source projects that are alternatives of or similar to Hamster

Security-related PHP7 OPcache abuse tools and demo

Authenticate against a MySQL server without knowing the cleartext password

A Python obfuscator using HTTP Requests and Hastebin.

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

Focus on cybersecurity | collection of PoC and Exploits

鹿不在侧，鲸不予游🐋

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)

A Proof of Capacity proxy which supports solo and pool mining upstreams

用cel-go重现了长亭xray的poc检测功能的轮子

IOTA Proof of Concept, store MQTT messages on the tangle.

✍️ A curated list of CVE PoCs.

GZip HTTP Bombing in Python for everyone

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

Formal verification of Elastic-Agent and more using BDD

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Some personal exploits/pocs

💣 Remotely render any nearby iPhone or iPad unusable

Fileless attack with persistence

Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity

Documentation, configuration, reference material and other information around an Asterisk-based VNF

CVE-2020-1206 Uninitialized Kernel Memory Read POC

Various proofs of concept examples using Github Actions 🤖

This project is a proof of concept to test graphQL usage in PHP.

Working Python test and PoC for CVE-2018-11776, includes Docker lab

Task Hijacking in Android (somebody call it also StrandHogg vulnerability)

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

基于burpsuite headless 的代理式被动扫描系统

Proof of concept code for the Spectre CPU exploit.

AD工作室精心研发漏洞安全扫描器

用于漏洞排查的pocsuite3验证POC代码

A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

We're working with community non-profits who have a Host Home or empty bedrooms initiative to develop a workflow management tool to make the process scalable (across all providers), reduce institutional bias, and effectively capture data.

CVE-2020-0796 Local Privilege Escalation POC

POC de uma aplicação de domínio financeiro.

poc-collection 是对 github 上公开的 PoC 进行收集的一个项目。

WEB PENETRATION TESTING TOOL 💥

🐩 Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 🐩

CVE-2020-8597 pppd buffer overflow poc

Exploit Code for CVE-2020-1472 aka Zerologon

This is the new version of dirb in python

Cross platform PoC ransomware written in Go

Pools organized for Epitech's students in 2021.

ISF(Industrial Security Exploitation Framework) is a exploitation framework based on Python.

PoC; terraform + kubeadm

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

CVE-2020-0796 Pre-Auth POC

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

PoC ActiveX SVG Document Execution

collection poc use pocsuite framework 收集一些 poc with pocsuite框架

A PoC on passing data through UNIX file privilege bits (RWX Triplets)

No description or website provided.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Blueborne CVE-2017-1000251 PoC for linux machines

Vagrant As Automation Script

CVE-2020-11651: Proof of Concept

Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5…