910 Open source projects that are alternatives of or similar to SQL_Injection_Payload

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Metasploit Cheat Sheet 💣

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

图形化漏洞利用集成工具

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

A Binary Ninja plugin for vulnerability research.

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

Real world and CTFs exploiting web/binary POCs.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

Vulnerability assessment and penetration testing automation and reporting platform for teams.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

Port of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

rsGen is a Reverse Shell Payload Generator for hacking.

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

OWASP Joomla Vulnerability Scanner Project

Exploit Discord's cache system to remote upload payloads on Discord users machines

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

A collection of electronic hacker magazines carefully curated over the years from multiple sources

DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

Safari local file reader

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Misc. Public Reports of Penetration Testing and Security Audits.

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

PoC exploit for CVE-2016-4622

A static binary vulnerability scanner

Some of my public exploits

Unsigned code loader for Exynos BootROM

Extraction of iMessage Data via XSS

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

Backend logic implementation for Vulnerability Management System

Reverse Shell as a Service

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

DoS PoC's for SAP products

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Powerful dork searcher and vulnerability scanner for windows platform

Proof of concept of VMSA-2017-0012

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

OSPd is a framework for vulnerability scanners which share the same communication protocol: OSP (Open Scanner Protocol)

Guest to host VM escape exploit for Parallels Desktop

Extensible framework for analyzing publicly available information about vulnerabilities

Advanced and easy to use penetration testing framework 💣🔎