Alternatives and similar repositories for exploits

Users that are interested in exploits are comparing it to the libraries listed below

• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆119Updated last year
• BishopFox / CVE-2023-27997-check
  Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing
  ☆134Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• BKreisel / sqlmap-websocket-proxy
  Tool to enable blind sql injection attacks against websockets using sqlmap
  ☆62Updated 2 months ago
• karthikuj / cve-2022-42889-text4shell-docker
  Dockerized POC for CVE-2022-42889 Text4Shell
  ☆76Updated 2 years ago
• 0xless / slip
  Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…
  ☆103Updated last month
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆89Updated last year
• PortSwigger / server-side-prototype-pollution
  ☆37Updated 2 years ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆63Updated last year
• horizon3ai / CVE-2023-34362
  MOVEit CVE-2023-34362
  ☆138Updated 2 years ago
• yuriisanin / CVE-2022-45025
  [PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)
  ☆90Updated 2 years ago
• synacktiv / laravel_cookie_killer
  ☆27Updated 2 years ago
• horizon3ai / CVE-2022-47966
  POC for CVE-2022-47966 affecting multiple ManageEngine products
  ☆127Updated 2 years ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆67Updated last year
• alt3kx / CVE-2022-1388_PoC
  F5 BIG-IP RCE exploitation (CVE-2022-1388)
  ☆88Updated 3 years ago
• pruzko / hakuin
  A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.
  ☆138Updated last month
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆73Updated 2 years ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆69Updated 2 years ago
• kljunowsky / CVE-2022-42889-text4shell
  Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
  ☆55Updated last year
• h4x0r-dz / CVE-2024-21893.py
  CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure
  ☆90Updated last year
• carlosevieira / CVE-2022-40684
  PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)
  ☆87Updated 2 years ago
• PenTestical / CVE-2020-9484
  ☆34Updated 3 years ago
• Occamsec / CVE-2023-2825
  GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…
  ☆141Updated 2 years ago
• h4x0r-dz / CVE-2024-3400
  CVE-2024-3400 Palo Alto OS Command Injection
  ☆160Updated last year
• RootUp / PersonalStuff
  Upload files done during my research.
  ☆162Updated 3 months ago
• horizon3ai / CVE-2023-27350
  Proof of Concept Exploit for PaperCut CVE-2023-27350
  ☆51Updated 2 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆100Updated 3 weeks ago
• nccgroup / jwt-reauth
  ☆105Updated 2 years ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• p0dalirius / Tomcat-webshell-application
  A webshell application and interactive shell for pentesting Apache Tomcat servers.
  ☆113Updated 5 months ago