ExphubExphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Stars: ✭ 3,056 (+1697.65%)
CmspocCMS渗透测试框架-A CMS Exploit Framework
Stars: ✭ 557 (+227.65%)
Pocsuite poc collectcollection poc use pocsuite framework 收集一些 poc with pocsuite框架
Stars: ✭ 127 (-25.29%)
foxy-proxyA Proof of Capacity proxy which supports solo and pool mining upstreams
Stars: ✭ 33 (-80.59%)
Vulscanvulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486 (+185.88%)
Drupalgeddon2Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)
Stars: ✭ 464 (+172.94%)
Cve 2017 0785Blueborne CVE-2017-0785 Android information leak vulnerability
Stars: ✭ 428 (+151.76%)
Poc ExploitsSelect proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.
Stars: ✭ 111 (-34.71%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (+142.94%)
poc-github-actionsVarious proofs of concept examples using Github Actions 🤖
Stars: ✭ 103 (-39.41%)
Poc Exppoc or exp of android vulnerability
Stars: ✭ 362 (+112.94%)
Hisilicon Dvr TelnetPoC materials for article https://habr.com/en/post/486856/
Stars: ✭ 101 (-40.59%)
Javadeserh2hcSample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
Stars: ✭ 361 (+112.35%)
Poc Collectionpoc-collection 是对 github 上公开的 PoC 进行收集的一个项目。
Stars: ✭ 210 (+23.53%)
Cve 2019 07083389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)
Stars: ✭ 350 (+105.88%)
Poc SPOC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞, 对功能进行强化以及脚本进行分类添加,自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC
Stars: ✭ 285 (+67.65%)
AngelswordPython3编写的CMS漏洞检测框架
Stars: ✭ 1,223 (+619.41%)
Cve 2019 1003000 Jenkins Rce PocJenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
Stars: ✭ 270 (+58.82%)
Poodle Poc🐩 Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 🐩
Stars: ✭ 198 (+16.47%)
Cve 2020 0796 PocPoC for triggering buffer overflow via CVE-2020-0796
Stars: ✭ 266 (+56.47%)
CiscoexploitCisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)
Stars: ✭ 73 (-57.06%)
CVE-2018-7750an RCE (remote command execution) approach of CVE-2018-7750
Stars: ✭ 18 (-89.41%)
exprologProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
Stars: ✭ 131 (-22.94%)
NSE-scriptsNSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (-38.24%)
ExploitsMiscellaneous exploit code
Stars: ✭ 1,157 (+580.59%)
DeepfakeHTTPDeepfakeHTTP is a web server that uses HTTP dumps as a source for responses.
Stars: ✭ 373 (+119.41%)
Cve 2020 1472Exploit Code for CVE-2020-1472 aka Zerologon
Stars: ✭ 183 (+7.65%)
CVE-2021-33766ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
Stars: ✭ 37 (-78.24%)
Bitp0wnAlgorithms to re-compute a private key, to fake signatures and some other funny things with Bitcoin.
Stars: ✭ 59 (-65.29%)
SpectrepocProof of concept code for the Spectre CPU exploit.
Stars: ✭ 239 (+40.59%)
CVE-2022-21907-http.sysProof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
Stars: ✭ 67 (-60.59%)
CryCross platform PoC ransomware written in Go
Stars: ✭ 179 (+5.29%)
swisscheeseExploits for YARA 3.7.1 & 3.8.1
Stars: ✭ 26 (-84.71%)
PowerladonLadon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC
Stars: ✭ 39 (-77.06%)
fake-web-eventsCreates a Simulation of Fake Web Events
Stars: ✭ 48 (-71.76%)
PocListAlibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5…
Stars: ✭ 1,004 (+490.59%)
Scripts-SploitsA number of scripts POC's and problems solved as pentests move along.
Stars: ✭ 37 (-78.24%)
IsfISF(Industrial Security Exploitation Framework) is a exploitation framework based on Python.
Stars: ✭ 161 (-5.29%)
foxy-minerA scavenger / conqueror wrapper for collision free multi mining of PoC coins
Stars: ✭ 17 (-90%)
ProcjackPoC of injecting code into a running Linux process
Stars: ✭ 17 (-90%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+2085.29%)
PocProof of Concepts
Stars: ✭ 809 (+375.88%)
kubeadm-tfPoC; terraform + kubeadm
Stars: ✭ 25 (-85.29%)
PoC-ActiveXPoC ActiveX SVG Document Execution
Stars: ✭ 21 (-87.65%)
graphql-pocThis project is a proof of concept to test graphQL usage in PHP.
Stars: ✭ 22 (-87.06%)
MtpwnPoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)
Stars: ✭ 143 (-15.88%)