This repository hosts PoC exploits for vulnerabilities I've discovered, provided for education and to highlight the importance of system security.
☆19Mar 24, 2023Updated 3 years ago
Alternatives and similar repositories for exploits
Users that are interested in exploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆11Oct 30, 2024Updated last year
- Collection of scripts and how-to for hacking embedded devices☆23Feb 16, 2026Updated last month
- ManageEngine ADManager Command Injection☆11Oct 2, 2023Updated 2 years ago
- CVE-2023-1671-POC, based on dnslog platform☆17Apr 26, 2023Updated 2 years ago
- ☆19Jan 21, 2026Updated 2 months ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- CVE-2021-40865☆14Nov 26, 2021Updated 4 years ago
- Bypass Android Do Not Disturb using the People and Conversations system☆11May 12, 2023Updated 2 years ago
- A compilation of scripts and scans for discovering and enumerating industrial control and SCADA devices. Utilizing open-source tools, I h…☆48Mar 8, 2023Updated 3 years ago
- ☆10Jun 5, 2023Updated 2 years ago
- NES emulator written in python☆11Sep 9, 2024Updated last year
- CVE-2023-4634☆47Mar 14, 2026Updated 3 weeks ago
- Writeups, PoCs of the bugs I found while preparing for the Pwn2Own Miami 2023 contest targeting UaGateway from the OPC UA Server category…☆63Aug 5, 2023Updated 2 years ago
- ACVPatcher patches AndroidManifest and rewrites DEX files inside an APK not touching resources (unlike apktool)☆12Mar 1, 2026Updated last month
- ☆15Mar 22, 2021Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- CVE-2014-10069☆11Jan 7, 2018Updated 8 years ago
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 3 months ago
- Trophy list of zero-day vulnerabilities that I discovered☆11May 6, 2024Updated last year
- PoC for the CVE-2021-20837 : RCE in MovableType☆18Oct 26, 2021Updated 4 years ago
- ☆36Oct 26, 2023Updated 2 years ago
- This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.☆55Apr 18, 2024Updated last year
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Dec 6, 2022Updated 3 years ago
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Dec 22, 2023Updated 2 years ago
- Archive for acez.re blog.☆21Apr 17, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Repo containing all info, scripts, etc. related to CVE-2021-44228☆10Dec 29, 2021Updated 4 years ago
- Documentation for Vilo router vulnerability research☆15Oct 21, 2024Updated last year
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆19Mar 24, 2024Updated 2 years ago
- A library and a set of tools for exploiting and communicating with Google's Quick Share devices.☆49Apr 2, 2025Updated last year
- A data pool-aware static analyzer to detect cross-layer threats in Android apps.☆13Jan 31, 2024Updated 2 years ago
- CVE-2018-11311 | mySCADA myPRO 7 Hardcoded FTP Username and Password Vulnerability☆12Jul 2, 2018Updated 7 years ago
- ☆12Dec 29, 2023Updated 2 years ago
- Shared library implementations that transform the containing process into a shell when loaded (useful for privilege escalation, argument …☆27Feb 15, 2024Updated 2 years ago
- GhostSec Scam Detection Tool☆16Feb 11, 2021Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- Exploit for CVE-2022-27226☆15Mar 19, 2022Updated 4 years ago
- Authentication Bypass in GoAnywhere MFT☆65Jan 23, 2024Updated 2 years ago
- WordPress WP_Query SQL Injection POC☆28Mar 11, 2023Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- ☆11Nov 25, 2020Updated 5 years ago
- CVE-2022-25765 pdfkit <0.8.6 command injection.☆15Dec 21, 2022Updated 3 years ago