Alternatives and similar repositories for exploits

Users that are interested in exploits are comparing it to the libraries listed below

• riramar / SmuggleTP
  A straightforward tool for exploiting SMTP Smuggling vulnerabilities.
  ☆15Updated 11 months ago
• Mehran-Seifalinia / CVE-2023-37979
  ☆14Updated 3 months ago
• post-cyberlabs / Exploits
  ☆17Updated 2 years ago
• PurpleWaveIO / CVE-2022-25765-pdfkit-Exploit-Reverse-Shell
  pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…
  ☆20Updated 2 years ago
• AmoloHT / CVE-2022-33891
  「💥」CVE-2022-33891 - Apache Spark Command Injection
  ☆26Updated 2 years ago
• RevoltSecurities / CVE-2024-24919
  An Vulnerability detection and Exploitation tool for CVE-2024-24919
  ☆25Updated last year
• efchatz / easy-exploits
  Exploits of different CVE IDs (CVE-2021-37910, CVE-2021-40288, CVE-2021-41435, CVE-2021-41436, CVE-2021-41437, CVE-2021-41441, CVE-2021-4…
  ☆17Updated 2 years ago
• tonyarris / srv
  A folder to serve tools from during PT/Red Team engagements. Contains common executables and scripts for privesc, recon, pivoting and CVE…
  ☆15Updated last year
• federella / CVE-2023-41717
  This repository is to provide a write-up and PoC for CVE-2023-41717.
  ☆12Updated last year
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆22Updated 2 years ago
• sqrtZeroKnowledge / Elasticsearch-Exploit-CVE-2023-31419
  Elasticsearch Stack Overflow Vulnerability
  ☆18Updated last year
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆65Updated 2 years ago
• whokilleddb / injection-for-dummies
  A collection of PoCs for different injection techniques on Windows!
  ☆44Updated last year
• hakivvi / CVE-2025-23369
  GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit
  ☆35Updated 5 months ago
• turalalv / Payload-cob
  Helping to automate payload development, testing, Opsec checking, beacon tasking, and deployment for Cobalt Strike
  ☆52Updated 3 years ago
• PetrusViet / CVE-2023-38743
  ManageEngine ADManager Command Injection
  ☆11Updated last year
• SeanPesce / lib2shell
  Shared library implementations that transform the containing process into a shell when loaded (useful for privilege escalation, argument …
  ☆27Updated last year
• nokn0wthing / CVE-2023-20052
  CVE-2023-20052, information leak vulnerability in the DMG file parser of ClamAV
  ☆28Updated 2 years ago
• l0n3m4n / CVE-2024-22274-RCE
  PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)
  ☆43Updated 11 months ago
• irsl / microsoft-diagcab-rce-poc
  Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution
  ☆23Updated 3 years ago
• mhaskar / DNSKeyGen
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆39Updated 2 years ago
• matro7sh / havoc-gosecdump
  ☆18Updated 7 months ago
• horizon3ai / CVE-2023-27350
  Proof of Concept Exploit for PaperCut CVE-2023-27350
  ☆51Updated 2 years ago
• Zeyad-Azima / CVE-2023-26818
  CVE-2023-26818 Exploit MacOS TCC Bypass W/ Telegram
  ☆17Updated last year
• HackingLZ / TomcatBackdoorPoC
  Tomcat backdoor based on CS blog
  ☆27Updated 2 years ago
• Stuub / CVE-2024-29895-CactiRCE-PoC
  CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds
  ☆21Updated last year
• demining / Dao-Exploit
  Cryptanalysis of the DAO exploit & Multi-Stage Attack
  ☆19Updated last year
• horizon3ai / CVE-2024-23108
  CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection
  ☆32Updated last year
• brosck / Pingoor
  「🚪」Linux Backdoor based on ICMP protocol
  ☆64Updated 7 months ago
• stark0de / regsave
  This tool is useful in case you want to evade the detection based on simple rules when trying to dump the SAM, SYSTEM or SECURITY hives u…
  ☆10Updated 2 years ago