556 Open source projects that are alternatives of or similar to Umbraco-RCE

Nailgun attack on ARM devices.

Some personal exploits/pocs

Miscellaneous exploit code

Notes about attacking Jenkins servers

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

SambaCry exploit and vulnerable container (CVE-2017-7494)

Integration of Elasticsearch as a search platform for Umbraco v7.5+

ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)

PoC materials for article https://habr.com/en/post/486856/

用cel-go重现了长亭xray的poc检测功能的轮子

Various proofs of concept examples using Github Actions 🤖

DoS PoC's for SAP products

Vagrant As Automation Script

Kubernetes security and vulnerability tools and utilities.

GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations

gtfo, now with the speed of golang

Creates a Simulation of Fake Web Events

A proof of concept for cordentity

Simple script that utilities discord's flaw in detecting who blocked who.

spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧

A scavenger / conqueror wrapper for collision free multi mining of PoC coins

Self defense post module for metasploit

An All-In-One Pure Python PoC for CVE-2021-44228

A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.

Hack on your project easily. A liftoff proof-of-concept.

Guest to host VM escape exploit for Parallels Desktop

this is a python module that contains functions and classes which are used to test the security of web/network applications. it's coded on pure python and it's very intelligent tool ! It can easily detect: XSS (relected/stored), RCE (Remote Code/Command Execution), SSTI, SSRF, CORS Misconfigurations, File Upload, CSRF, Path Traversal,.... Also, …

CRAX: software CRash analysis for Automatic eXploit generation

Python bind shell single line code for both Unix and Windows, used to find and exploit RCE (ImageMagick, Ghostscript, ...)

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

A minimalist re-implementation of the Fusée Gelée exploit (http://memecpy.com), designed to run on embedded Linux devices. (Zero dependencies)

Angular app to visualize & interact with a blockchain

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

Basic tool to automate backdooring PE files

Nested Content for Umbraco 7.1 to 7.6

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

🔮🔬Front-End testing tool which can be used to create a side by side visual comparison between your live site and local site.

Collection of different exploits

Demo store for Vendr, the eCommerce solution for Umbraco v8+

GZip HTTP Bombing in Python for everyone

Pools organized for Epitech's students in 2021.

Contentment for Umbraco - a state of happiness and satisfaction

Distributed, workflow-driven integration environment

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

exploit code for F5-Big-IP (CVE-2020-5902)

T-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).

CVE-2019-16759 vbulletin 5.0.0 till 5.5.4 pre-auth rce

Hamster是基于mitmproxy开发的异步被动扫描框架，基于http代理进行被动扫描，主要功能为重写数据包、签名、漏洞扫描、敏感参数收集等功能（开发中）。

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

CTF中Pwn的快速利用模板（包含awd pwn）

RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Windows MSI Installer LPE (CVE-2021-43883)

Ditto - the friendly view-model mapper for Umbraco

Documentation, configuration, reference material and other information around an Asterisk-based VNF