312 Open source projects that are alternatives of or similar to Huorong_vulnerabilities

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

List of real-world threats against endpoint protection software

Steal Net-NTLM Hash using Bad-PDF

Vulnerability Labs for security analysis

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.

Asynchronous Python implementation of SlowLoris DoS attack

ES File Explorer Open Port Vulnerability - CVE-2019-6447

A curated list of awesome baseband research resources

An Python Script For Generating Payloads that Bypasses All Antivirus so far .

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Modular file scanning/analysis framework

A self-hosted drag-and-drop, nosql yet fully-featured file-scanning server.

Create actionable data from your Vulnerability Scans

Vulnerability Dashboard

A collection of electronic hacker magazines carefully curated over the years from multiple sources

A DNS rebinding attack framework.

An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

Undetectable Windows Payload Generation

A laboratory for learning secure web and mobile development in a practical manner.

Python antivirus evasion tool

Auto Scanning to SSL Vulnerability

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

Poc Collected for study and develop

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Algorithms to re-compute a private key, to fake signatures and some other funny things with Bitcoin.

SQL Vulnerability Scanner

A sandbox escape based on the proof-of-concept (CVE-2018-4087) by Rani Idan (Zimperium)

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

It's a simple tool for test vulnerability shellshock

The Correlated CVE Vulnerability And Threat Intelligence Database API

A simple way for detection the remote user's antivirus

🎯 Command Injection Payload List

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

🔪Browser logic vulnerabilities ☠️

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

OPCDE Cybersecurity Conference Materials

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Antivirus evasion project

An open-source antivirus for windows

Android Malware (Analysis | Scoring System)

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

hack tools

Exploiting Edge's read:// urlhandler

Proofs-of-concept

Here you can get full exploit for SAP NetWeaver AS JAVA

Apache Solr Injection Research

Production-ready fullstack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) running inside a container.

VirusTotal Wanna Be - Now with 100% more Hipster

Detect potentially malicious PHP files

windows kernel security development

Penetration Testing Platform