This repository hosts PoC exploits for vulnerabilities I've discovered, provided for education and to highlight the importance of system security.
☆19Mar 24, 2023Updated 3 years ago
Alternatives and similar repositories for exploits
Users that are interested in exploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆11Apr 15, 2026Updated 2 weeks ago
- Collection of scripts and how-to for hacking embedded devices☆23Feb 16, 2026Updated 2 months ago
- Exploit for CVE-2024-4883☆11Jul 8, 2024Updated last year
- CVE-2023-1671-POC, based on dnslog platform☆17Apr 26, 2023Updated 3 years ago
- ☆19Jan 21, 2026Updated 3 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- CVE-2021-40865☆14Nov 26, 2021Updated 4 years ago
- Bypass Android Do Not Disturb using the People and Conversations system☆11May 12, 2023Updated 2 years ago
- A compilation of scripts and scans for discovering and enumerating industrial control and SCADA devices. Utilizing open-source tools, I h…☆48Mar 8, 2023Updated 3 years ago
- ☆10Jun 5, 2023Updated 2 years ago
- CVE-2023-4634☆47Mar 14, 2026Updated last month
- NES emulator written in python☆11Sep 9, 2024Updated last year
- Writeups, PoCs of the bugs I found while preparing for the Pwn2Own Miami 2023 contest targeting UaGateway from the OPC UA Server category…☆61Aug 5, 2023Updated 2 years ago
- ACVPatcher patches AndroidManifest and rewrites DEX files inside an APK not touching resources (unlike apktool)☆12Mar 1, 2026Updated last month
- CVE-2014-10069☆11Jan 7, 2018Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 3 months ago
- DEFCON 30 Car Hacking Village Presentation☆11Sep 11, 2022Updated 3 years ago
- Trophy list of zero-day vulnerabilities that I discovered☆13May 6, 2024Updated last year
- PoC for the CVE-2021-20837 : RCE in MovableType☆18Oct 26, 2021Updated 4 years ago
- A data pool-aware static analyzer to detect cross-layer threats in Android apps.☆12Jan 31, 2024Updated 2 years ago
- ☆36Oct 26, 2023Updated 2 years ago
- This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.☆55Apr 18, 2024Updated 2 years ago
- ☆15Mar 22, 2021Updated 5 years ago
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Dec 22, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Archive for acez.re blog.☆21Apr 17, 2023Updated 3 years ago
- Documentation for Vilo router vulnerability research☆15Oct 21, 2024Updated last year
- ☆31Feb 20, 2022Updated 4 years ago
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Dec 6, 2022Updated 3 years ago
- A library and a set of tools for exploiting and communicating with Google's Quick Share devices.☆49Apr 2, 2025Updated last year
- ☆12Dec 29, 2023Updated 2 years ago
- GhostSec Scam Detection Tool☆17Feb 11, 2021Updated 5 years ago
- apache log4j poc—— base Maven☆13Dec 11, 2021Updated 4 years ago
- This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"☆14Dec 8, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Android 14 Beta 1 framework/services source code, reverse engineered from a Pixel 7 Pro (upb1.230309.014)☆15Apr 13, 2023Updated 3 years ago
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- Exploit for CVE-2022-27226☆15Mar 19, 2022Updated 4 years ago
- pSlip is an Android static analysis tool kit designed to find potentially vulnerable escalation paths by analyzing exported components, i…☆26Jan 24, 2026Updated 3 months ago
- Authentication Bypass in GoAnywhere MFT☆65Jan 23, 2024Updated 2 years ago
- WordPress WP_Query SQL Injection POC☆28Mar 11, 2023Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago