104 Open source projects that are alternatives of or similar to Snyk Js Jquery 174006

漏洞研究

Some personal exploits/pocs

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

NVD/CVE as JSON files

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

Modified Nuclei Templates Version to FUZZ Host Header

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

log4j2 remote code execution or IP leakage exploit (with examples)

Public Disclosures

Minecraft Honeypot for Log4j exploit. CVE-2021-44228 Log4Shell LogJam

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

CVE-2018-8120 Windows LPE exploit

Red Hat Dependency Analytics extension

A PHP version scanner for reporting possible vulnerabilities

A collection of my public security advisories.

Resources for Windows exploit development

Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.

Log4j Vulnerability Scanner for Windows

The knife of the Admin & Security auditor

Tracking CVEs for the linux Kernel

CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Advisories and Proofs of Concept by BlackArrow

Multi source CVE/exploit parser.

BootStomp: a bootloader vulnerability finder

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

A collection of curated Java Deserialization Exploits

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

🐈Medusa是一个红队武器库平台，目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能，持续开发中 http://medusa.ascotbe.com

A simple framework for sending test payloads for known web CVEs.

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Extensible framework for analyzing publicly available information about vulnerabilities

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.

OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).

Poc Collected for study and develop

一些漏洞分析

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

CVE Alerting Platform

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Check linux sources dump for known CVEs.

👮 Security advisories of Nextcloud

ES File Explorer Open Port Vulnerability - CVE-2019-6447

REST API backend for Reconmap

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

radare2 IO plugin for Linux and Android. Modifies files owned by other users via dirtycow Copy-On-Write cache vulnerability

WebMap-Nmap Web Dashboard and Reporting

No description or website provided.

Exploiting Edge's read:// urlhandler

The Correlated CVE Vulnerability And Threat Intelligence Database API

🔪Browser logic vulnerabilities ☠️

快速搭建各种漏洞环境(Various vulnerability environment)

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks