469 Open source projects that are alternatives of or similar to phpwaf-phanalyzer

Self defense post module for metasploit

Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.

EAD: Elastic-Net Attacks to Deep Neural Networks via Adversarial Examples

python3批量poc检测工具

ARM rop chain gadget searcher

Kitap Önizleme Versiyonu

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Hack The Printer

PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM

share some useful archives about vm and qemu escape exploit.

The Lost Nintendo DS Television Output, brought back to life

Drupal < 7.58 - Drupalgeddon 3 Authenticated Remote Code Execution (Metasploit)

DoS PoC's for SAP products

free exploit framework written use python language version 3.3

Almanca dilbilgisi ve gramer notlari / Lesson notes I have taken to learn the German language beginning from A1.

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Webshell Jumping Edition

Extraction of iMessage Data via XSS

radare2 IO plugin for Linux and Android. Modifies files owned by other users via dirtycow Copy-On-Write cache vulnerability

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.73

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

Group satellites into constellations such that their average observation coverage is maximized

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

CTF竞赛权威指南

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

An application to catch, search and analyze HTTP secure headers.

Metasploit framework with steroids

Hourly updated database of exploit and exploitation reports

Proof of concept of VMSA-2017-0012

Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.

Startup dünyasında sık kullan kelimeler ve terimler

All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)

python library for turkish dictionary. 📕🇹🇷

Accelerated subscription for international/China region ad filtering rules（国际/中国地区广告过滤规则的加速订阅）

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Python morphological analyzer for Turkish language. Partial port of ZemberekNLP.

POC script for the ManageEngine Multiple Products Authenticated File Upload Exploit

Exploit PollDaddy polls

Tool to help exploit XXE vulnerabilities

Implementation of the KDD 2020 paper "Graph Structure Learning for Robust Graph Neural Networks"

Proof of concept code for the Spectre CPU exploit.

GitLab CE/EE Preauth RCE using ExifTool

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

🛠️ Tool to bypass my school's security system to get sudo privileges on MacOS

Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

NekoBot | Auto Exploiter With 500+ Exploit 2000+ Shell

rsGen is a Reverse Shell Payload Generator for hacking.

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

Brahma - Privilege elevation exploit for Nintendo 3DS

The official PHP SDK for Shieldfy

Integrate Airlock WAF in a Kubernetes or OpenShift Environment

A web-based testing platform for WAF (Web Application Firewall)'s correctness

Kubernetes Ingress controller with integrated Wallarm services