552 Open source projects that are alternatives of or similar to PatrowlHearsData

漏洞利用框架模块分享仓库

Windows Exploit Suggester - Next Generation

A Ruby micro-framework for writing and running exploits

Rage allows you to execute any file in a Microsoft Office document.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Some of my CTF solutions

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

Encrypted exploit delivery for the masses

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

Focus on cybersecurity | collection of PoC and Exploits

CTF中Pwn的快速利用模板（包含awd pwn）

Some of my public exploits

Blazing fast, advanced Padding Oracle exploit

NSA Hacking Tool Recreation UnitedRake

RootMyTV is a user-friendly exploit for rooting/jailbreaking LG webOS smart TVs.

Linux local root exploit for CVE-2014-0038

A number of scripts POC's and problems solved as pentests move along.

Serverless plugin for securing your dependencies with Snyk

A collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

AndroRAT | Remote Administrator Tool for Android OS Hacking

Safari local file reader

A collection of links related to Linux kernel security and exploitation

Kubernetes security and vulnerability tools and utilities.

Fully Featured Nintendo DS Loader for Ghidra

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

Windows MSI Installer LPE (CVE-2021-43883)

pentest framework

Search gtfobins and lolbas files from your terminal

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

Exploiting challenges in Linux and Windows

Automated Twitter mass account creation and follow using Selenium and Tor VPN

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

Vulnerable software and exploits used for OSCP/OSCE preparation

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

gtfo, now with the speed of golang

💣 Remotely render any nearby iPhone or iPad unusable

Self defense post module for metasploit

Roblox Exploit Source Code Called IceMeme with some cmds, lua c and limited lua execution with simple ui in c#

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.

Proof of concept code for the Spectre CPU exploit.

Working Python test and PoC for CVE-2018-11776, includes Docker lab

An interactive multi-user web JS shell

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

Proxy token to allow mitigating EOSIO Ram exploit

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

share some useful archives about vm and qemu escape exploit.

Reference: http://www.secgeek.net/bookfresh-vulnerability/

Repository to train/learn memory corruption on the ARM platform.

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)

Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities