304 Open source projects that are alternatives of or similar to Linuxflaw

A collection of JavaScript engine CVEs with PoCs

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

ES File Explorer Open Port Vulnerability - CVE-2019-6447

Extensible framework for analyzing publicly available information about vulnerabilities

漏洞研究

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

一些漏洞分析

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

A collection of my public security advisories.

Extraction of iMessage Data via XSS

The Correlated CVE Vulnerability And Threat Intelligence Database API

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).

Vulnerability (CVE) scanner for Nix/NixOS.

REST API backend for Reconmap

Original Automated CVE Checking Tool

Log4j Vulnerability Scanner for Windows

Exploiting Edge's read:// urlhandler

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

汽车/安卓/固件/代码安全测试工具集

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

🔪Browser logic vulnerabilities ☠️

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Poc Collected for study and develop

Vulnerability Labs for security analysis

Word 2016 vulnerability allows injecting HTML/JS code into a docx file's embeddedHTML="" tags.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

🛡️ GitHub Action for security audits

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Vulnerability Recurrence:漏洞复现记录

PatrowlHears - Vulnerability Intelligence Center / Exploits

溯光 (TrackRay) 3 beta⚡渗透测试框架（资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap）

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

PoC exploit for CVE-2016-4622

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Vulnerability Database | huntr.dev

cve-search - a tool to perform local searches for known vulnerabilities

A web crawler (for bug hunting) that gathers more than you can imagine.

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Reverse Shell as a Service

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

The clever vulnerability dependency finder

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

OSINT tool - gets data from services like shodan, censys etc. in one app

Nonce-Disrespecting Adversaries: Practical Forgery Attacks on GCM in TLS

A social experiment

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

MrsPicky - An IDAPython decompiler script that helps auditing calls to the memcpy() and memmove() functions.

Huorong Internet Security vulnerabilities 火绒安全软件漏洞

A simple Java command-line utility to mirror the CVE JSON data from NIST.

A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.

Potentially dangerous files

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

Test a host for susceptibility to CVE-2019-19781

A sandbox escape based on the proof-of-concept (CVE-2018-4087) by Rani Idan (Zimperium)