342 Open source projects that are alternatives of or similar to Unauthd

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Self contained htaccess shells and attacks

📚 VoidHack CTF write-ups

C++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

Exploit Discord's cache system to remote upload payloads on Discord users machines

Yet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.

Disabling kernel lockdown on Ubuntu without physical access

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Vulnerability Labs for security analysis

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

Framework to test any Anti-Cheat

Asynchronous Python implementation of SlowLoris DoS attack

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

PegaSwitch is an exploit toolkit for the Nintendo Switch

PS / Bash / Python / Other scripts For FUN!

🌸 Interactive shellcoding environment to easily craft shellcodes

My proof-of-concept exploits for the Linux kernel

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

CTF framework and exploit development library

windows-kernel-exploits Windows平台提权漏洞集合

Here you can get full exploit for SAP NetWeaver AS JAVA

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Fully Featured Nintendo DS Loader for Ghidra

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.68

Focus on cybersecurity | collection of PoC and Exploits

Exploiting Edge's read:// urlhandler

pentest framework

Using open Adb ports we can exploit a Andriod Device

A collection of electronic hacker magazines carefully curated over the years from multiple sources

Notes about attacking Jenkins servers

Automated Twitter mass account creation and follow using Selenium and Tor VPN

Discover duplication glitches, abusive staff giving items, x-ray or simply poor server economy.

NSA Hacking Tool Recreation UnitedRake

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Collection of things made during my OSCP journey

Blueborne CVE-2017-0781 Android heap overflow vulnerability

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

Roblox Exploit Source Code Called IceMeme with some cmds, lua c and limited lua execution with simple ui in c#

OWASP Joomla Vulnerability Scanner Project

Plaintext Password harvesting from Azure Windows VMs

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.

A tool to help you write binary exploits

Some of my CTF solutions

An IDA Pro plugin to examine the glibc heap, focused on exploit development

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

hack tools

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Writeup of CVE-2020-15906

Exploitation and Mitigation Slides

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

exploit

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Remote exploitation framework written in Python