290 Open source projects that are alternatives of or similar to Procjack

Dependency injection library for Python

A wiki focusing on aggregating and documenting various SQL injection methods

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

🦄🔒 Awesome list of secrets in environment variables 🖥️

Hacking Charles Web Debugging Proxy

A Silent (Hidden) Monero (XMR) Miner Builder

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A recursive injection of partials based on their path name. Implementation of specific case of gulp-inject.

Image Payload Creating/Injecting tools

DeepfakeHTTP is a web server that uses HTTP dumps as a source for responses.

AOP framework for .NET (c#, vb, etc)

Vulnerable website scraper

A linux-based assembly REPL for x86, amd64, armv7, and armv8

Linux applications proxifier

Substrate for macOS

Tools for loading file-based configuration files and mapping them with Guice's ``@Named`` and more

A tiny, intuitive, robust, caching solution for injecting SVG files inline into the DOM.

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

poc or exp of android vulnerability

BugBounty Tool

🎯 SQL Injection Payload List

Lightweight dependency injection engine and DI-driven tools.

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

Dependency Injection Framework for Unity3D

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Writing Spyware Made Easy - POC spyware Chrome Extension/Server

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Small tool to package javascript into a valid image file.

try privilege escalation changing sudo command

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers

Antivirus evasion project

NodeJS Red-Team Cheat Sheet

Inject C# code into a running process

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

Exploits for YARA 3.7.1 & 3.8.1

🦘 A dependency injection container for C++11, C++14 and later

ld_preload userland rootkit

Inject a shared library (i.e. arbitrary code) into a live linux process, without ptrace

Python AV Evasion Tools

POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞， 对功能进行强化以及脚本进行分类添加，自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC

Creates a Simulation of Fake Web Events

🐈Medusa是一个红队武器库平台，目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能，持续开发中 http://medusa.ascotbe.com

From a debugger's view, Let's explore the computer world! How does compiler, linker and debugger coordinate with each other around the program written in specific programming language? How does a debugger work? If we develop a debugger for go programming language, we must master go type system, runtime... and some Operating System internals. OK,…

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

An extension to Mono.Cecil that provides helper methods for simple method injection.

红队综合渗透框架

CNeptune improve productivity & efficiency by urbanize .net module with meta-code to lay foundation for frameworks

This repository contains payload to test NoSQL Injections

🎯 Command Injection Payload List

Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.

PoC for triggering buffer overflow via CVE-2020-0796

Very simplified shop sales system made in a microservices architecture using quarkus

Koin - a pragmatic lightweight dependency injection framework for Kotlin

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

自动漏洞扫描器，自动子域名爆破，自动爬取注入，调用sqlmapapi检测注入，端口扫描，目录爆破，子网段服务探测及其端口扫描，常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic crawl injection, injection, call the sqlmapapi port scan detection, directory service detection and segment blasting, port scanning, vulnerability detection framework commonly used.