921 Open source projects that are alternatives of or similar to SpringBootExploit

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Here you can get full exploit for SAP NetWeaver AS JAVA

Apache Shiro 反序列化漏洞检测与利用工具

Advanced Web Browser Fingerprinting

Ladon Moudle MS17010 Exploit for PowerShell

Real world and CTFs exploiting web/binary POCs.

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Extraction of iMessage Data via XSS

Advanced vulnerability scanning with Nmap NSE

rsGen is a Reverse Shell Payload Generator for hacking.

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

Powerful dork searcher and vulnerability scanner for windows platform

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

Misc. Public Reports of Penetration Testing and Security Audits.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Proofs-of-concept

Asynchronous Python implementation of SlowLoris DoS attack

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Safari local file reader

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Unsigned code loader for Exynos BootROM

Some of my public exploits

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

JAVA 漏洞靶场 (Vulnerability Environment For Java)

DoS PoC's for SAP products

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

SQL Injection Payload List

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

IoT 固件漏洞复现环境

hack tools

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Vulnerability Labs for security analysis

Exploiting Edge's read:// urlhandler

My exploitDB.

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

PoC exploit for CVE-2016-4622

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Reverse Shell as a Service

Kubernetes security and vulnerability tools and utilities.

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

Proof of concept of VMSA-2017-0012

Guest to host VM escape exploit for Parallels Desktop

Extensible framework for analyzing publicly available information about vulnerabilities

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

Python SDK to access the vulnerability database

CTF中Pwn的快速利用模板（包含awd pwn）

基础IM通信

A Ruby micro-framework for writing and running exploits

hillfog is an KPI, OKR (Objectives and Key Results), PDCA, BSC (balanced scorecard) web platform.