Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stage during the Pwn2Own Miami 2022 competition.
☆90Oct 8, 2023Updated 2 years ago
Alternatives and similar repositories for paracosme
Users that are interested in paracosme are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Banana Fuzzer ~ modulable, loop based, poc gen, code cov, platform agnostic, race oriented☆59Oct 18, 2022Updated 3 years ago
- A Poc on blocking Procmon from monitoring network events☆112Aug 7, 2025Updated 10 months ago
- Zenith exploits a memory corruption vulnerability in the NetUSB driver to get remote-code execution on the TP-Link Archer C7 V5 router fo…☆131Apr 25, 2022Updated 4 years ago
- ☆29Jan 9, 2023Updated 3 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Jun 21, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆32Dec 18, 2020Updated 5 years ago
- ☆11May 25, 2026Updated 3 weeks ago
- Remove API hooks from a Beacon process.☆14Sep 18, 2021Updated 4 years ago
- This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager☆47Oct 3, 2023Updated 2 years ago
- Repository of the findings found by wtf when fuzzing IDA75.☆85Aug 2, 2021Updated 4 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆115Jan 31, 2025Updated last year
- POC for CLFS CVE-2022-24481☆14May 14, 2023Updated 3 years ago
- ☆54Oct 10, 2023Updated 2 years ago
- pocs & exploit for CVE-2023-24871 (rce + lpe)☆51Jul 17, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆84Apr 5, 2026Updated 2 months ago
- Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")☆205Sep 13, 2023Updated 2 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 3 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆262May 10, 2023Updated 3 years ago
- Hyper-V VMBusPipe Reversing☆28May 10, 2021Updated 5 years ago
- Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"☆257Aug 14, 2022Updated 3 years ago
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆146Dec 16, 2023Updated 2 years ago
- ☆24Apr 30, 2023Updated 3 years ago
- PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"☆57Feb 26, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This small script helps to avoid using MetaSploit (msfconsole) during the Enterprise pentests and OSCP-like exams. Grep included function…☆14Mar 9, 2023Updated 3 years ago
- Keep it secret, keep it safe☆77Feb 6, 2025Updated last year
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆140Jun 2, 2023Updated 3 years ago
- it is very good☆513Dec 20, 2022Updated 3 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆97Mar 8, 2023Updated 3 years ago
- ☆128Jun 28, 2023Updated 2 years ago
- Only for educational purposes☆11Jun 17, 2023Updated 3 years ago
- ☆33Jul 4, 2023Updated 2 years ago
- Repository contains shellcodes made from scratch for intel x86-64 bit Architecture☆12May 6, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute…☆154Jun 18, 2023Updated 3 years ago
- ☆187Jan 12, 2023Updated 3 years ago
- PoCs and tools for investigation of Windows process execution techniques☆960Feb 2, 2026Updated 4 months ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kerne…☆1,767Jan 2, 2026Updated 5 months ago
- ☆16Apr 5, 2026Updated 2 months ago
- Running .NET from VBA☆147Feb 11, 2023Updated 3 years ago