This repository contains information on the CVEs I found.
☆53Mar 10, 2024Updated 2 years ago
Alternatives and similar repositories for vulnerability-research
Users that are interested in vulnerability-research are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- API fuzzer that exposes security flaws by sending malformed inputs☆16Sep 4, 2024Updated last year
- A GitHub workflow to identify employees that have leaked your organization's code☆14May 23, 2023Updated 3 years ago
- JavaScript (Node) Call Flooder☆13Mar 11, 2021Updated 5 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆24Aug 22, 2017Updated 8 years ago
- Nuclei templates for drupal vulns... far from perfect☆19Jan 9, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.☆19Sep 9, 2025Updated 9 months ago
- Here we are gather all Nuclei Templates that are Publically available.☆15Apr 28, 2024Updated 2 years ago
- Advanced in-memory process injection using transient SEC_IMAGE sections, custom crypter, and ADS payload delivery no disk traces, maximum…☆20Jun 12, 2025Updated last year
- ☆10Apr 20, 2022Updated 4 years ago
- This repo contains the code for my secure code review challenges. People used this as the primary resource to pass FAANG AppSec interview…☆359May 22, 2026Updated last month
- Tool to mount all readable CIFS shares of a remote system locally to a linux system. This allows the use tools like filesystem GUIs, tree…☆16Jul 12, 2023Updated 2 years ago
- Hacking Windows through iTunes - Local Privilege Escalation 0-day☆98Oct 4, 2024Updated last year
- My solutions for pwn and reversing challenges☆11Mar 18, 2018Updated 8 years ago
- Tools used for Pentesting☆22Apr 21, 2023Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- The difference between exploitation prediction and detection is akin to the difference between detecting a missile launch or a detonation…☆13Jun 20, 2026Updated last week
- Exploit script for the CFOR vulnerability using Github's GraphQL API☆28Aug 7, 2024Updated last year
- Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent …☆16Apr 8, 2025Updated last year
- A tool to extract firmware from an O.MG Cable☆11Mar 24, 2021Updated 5 years ago
- r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing …☆14Jul 3, 2024Updated last year
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆79Oct 6, 2023Updated 2 years ago
- Penstaller: A Python tool to automate the installation of essential bug bounty and pentesting tools. With one command, it sets up tools f…☆18Mar 14, 2025Updated last year
- Collection of scripts that I created to make my life easier.☆12May 10, 2021Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Simple shellcode injection in Nim encrypted in XOR☆22Aug 21, 2023Updated 2 years ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 7 months ago
- ☆61May 24, 2026Updated last month
- Leverages B64 chunks to split files and save to clipboard☆26Dec 7, 2025Updated 6 months ago
- Kubernetes, Clusters and Dockers Enumeration in GCP and AWS environments☆12Nov 23, 2023Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆25Sep 19, 2022Updated 3 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 5 years ago
- Automated Persistence and Lateral Movement using GCP Patch Management☆16Aug 11, 2022Updated 3 years ago
- A keylogger written in Rust to run on Windows (only educational)☆21Mar 2, 2019Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Regex patterns for manual application source code review☆34Dec 14, 2020Updated 5 years ago
- A Burp Suite extension that converts IP addresses to decimal notation, useful for SSRF bypass and WAF evasion testing. Created by Harshad…☆13Dec 9, 2024Updated last year
- flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.☆19Sep 5, 2025Updated 9 months ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆38Nov 3, 2025Updated 7 months ago
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Sep 11, 2021Updated 4 years ago
- Self sustainable DOM content fuzzy hashing☆11Oct 5, 2024Updated last year
- A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs☆10Nov 29, 2020Updated 5 years ago