953 Open source projects that are alternatives of or similar to Hisilicon Dvr Telnet

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

an RCE (remote command execution) approach of CVE-2018-7750

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Security and Hacking Tools, Exploits, Proof of Concepts, Shellcodes, Scripts.

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

Blueborne CVE-2017-0785 Android information leak vulnerability

RouterOS Security Research Tooling and Proof of Concepts

Simple and fast discord token cracker

Blueborne CVE-2017-0781 Android heap overflow vulnerability

Some of my public exploits

A number of scripts POC's and problems solved as pentests move along.

Some personal exploits/pocs

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Experiments on C/C++ Exploits

Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Focus on cybersecurity | collection of PoC and Exploits

Focus on cybersecurity | collection of PoC and Exploits

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

CamOver is a camera exploitation tool that allows to disclosure network camera admin password.

Exploiting challenges in Linux and Windows

Collection of different exploits

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Misc. Public Reports of Penetration Testing and Security Audits.

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Exploit Netwave and GoAhead IP Camera

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Proofs-of-concept

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

A collection of android Exploits and Hacks

Based on https://github.com/igrr/esp32-cam-demo extended with an ILI9341 display, with a Telnet interface to change OV7670 settings on the fly. Streams BMP files from RGB565 and YUV422 (encoded to RGB565) picture formats. Compile with latest esp-idf. Check out new telnet command "video 1" to auto capture to LCD as fast as possible for videocam mode, "video 0" to stop or "video Z" where Z is delay in ms between each capture / LCD refresh.

Exploit Discord's cache system to remote upload payloads on Discord users machines

Miscellaneous exploit code

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

Proof of concept code for the Spectre CPU exploit.

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

A collection of electronic hacker magazines carefully curated over the years from multiple sources

A social experiment