This repository hosts PoC exploits for vulnerabilities I've discovered, provided for education and to highlight the importance of system security.
☆19Mar 24, 2023Updated 2 years ago
Alternatives and similar repositories for exploits
Users that are interested in exploits are comparing it to the libraries listed below
Sorting:
- ☆11Oct 30, 2024Updated last year
- Collection of scripts and how-to for hacking embedded devices☆22Feb 16, 2026Updated last month
- ManageEngine ADManager Command Injection☆11Oct 2, 2023Updated 2 years ago
- This is writeup for Burp Suite room in tryhackme.com☆15Aug 8, 2020Updated 5 years ago
- Exploit for CVE-2024-4883☆11Jul 8, 2024Updated last year
- ☆18Jan 21, 2026Updated last month
- CVE-2023-1671-POC, based on dnslog platform☆17Apr 26, 2023Updated 2 years ago
- CVE-2021-40865☆14Nov 26, 2021Updated 4 years ago
- Bypass Android Do Not Disturb using the People and Conversations system☆11May 12, 2023Updated 2 years ago
- A compilation of scripts and scans for discovering and enumerating industrial control and SCADA devices. Utilizing open-source tools, I h…☆48Mar 8, 2023Updated 3 years ago
- ☆10Jun 5, 2023Updated 2 years ago
- CVE-2023-4634☆46Updated this week
- Writeups, PoCs of the bugs I found while preparing for the Pwn2Own Miami 2023 contest targeting UaGateway from the OPC UA Server category…☆63Aug 5, 2023Updated 2 years ago
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Jun 15, 2022Updated 3 years ago
- ☆15Mar 22, 2021Updated 4 years ago
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 2 months ago
- Trophy list of zero-day vulnerabilities that I discovered☆11May 6, 2024Updated last year
- ☆36Oct 26, 2023Updated 2 years ago
- A demo exploit for CVE-2021-44026, a SQL injection in Roundcube☆13Dec 22, 2023Updated 2 years ago
- Archive for acez.re blog.☆21Apr 17, 2023Updated 2 years ago
- Documentation for Vilo router vulnerability research☆15Oct 21, 2024Updated last year
- ☆31Feb 20, 2022Updated 4 years ago
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆19Mar 24, 2024Updated last year
- A library and a set of tools for exploiting and communicating with Google's Quick Share devices.☆49Apr 2, 2025Updated 11 months ago
- A data pool-aware static analyzer to detect cross-layer threats in Android apps.☆13Jan 31, 2024Updated 2 years ago
- CVE-2018-11311 | mySCADA myPRO 7 Hardcoded FTP Username and Password Vulnerability☆12Jul 2, 2018Updated 7 years ago
- Shared library implementations that transform the containing process into a shell when loaded (useful for privilege escalation, argument …☆27Feb 15, 2024Updated 2 years ago
- ☆12Dec 29, 2023Updated 2 years ago
- GhostSec Scam Detection Tool☆15Feb 11, 2021Updated 5 years ago
- This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"☆14Dec 8, 2023Updated 2 years ago
- Android 14 Beta 1 framework/services source code, reverse engineered from a Pixel 7 Pro (upb1.230309.014)☆17Apr 13, 2023Updated 2 years ago
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- Exploit for CVE-2022-27226☆15Mar 19, 2022Updated 4 years ago
- pSlip is an Android static analysis tool kit designed to find potentially vulnerable escalation paths by analyzing exported components, i…☆26Jan 24, 2026Updated last month
- Authentication Bypass in GoAnywhere MFT☆65Jan 23, 2024Updated 2 years ago
- WordPress WP_Query SQL Injection POC☆28Mar 11, 2023Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- ☆11Nov 25, 2020Updated 5 years ago
- 微信公众号安全漏洞文章链接聚合☆28Updated this week