A collection of published exploits and proof-of-concept code.
☆21Dec 19, 2017Updated 8 years ago
Alternatives and similar repositories for poc
Users that are interested in poc are comparing it to the libraries listed below
Sorting:
- ☆14May 13, 2018Updated 7 years ago
- POC for XStream RCE☆13Dec 23, 2013Updated 12 years ago
- when pass change ,send the pass to remote host☆20Jan 19, 2020Updated 6 years ago
- ☆72Nov 20, 2017Updated 8 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Aug 5, 2013Updated 12 years ago
- ☆12May 9, 2017Updated 8 years ago
- ☆11Jul 2, 2016Updated 9 years ago
- Study about HQL injection exploitation.☆52May 15, 2016Updated 9 years ago
- Local enumeration and exploitation framework.☆18Aug 16, 2017Updated 8 years ago
- ☆22Mar 5, 2022Updated 4 years ago
- java unserialize vulnerability payload☆21Apr 20, 2019Updated 6 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Jan 20, 2025Updated last year
- The Outlook HTML Leak Test Project☆130May 12, 2018Updated 7 years ago
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆18Mar 3, 2021Updated 5 years ago
- Jira Information Gatherer☆29Dec 3, 2017Updated 8 years ago
- Office 365 MFA capture toolkit☆14Aug 3, 2017Updated 8 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Dec 2, 2020Updated 5 years ago
- Spawns a reverse TCP shell on the machine its run on☆15Mar 29, 2014Updated 11 years ago
- A Java serializer in JavaScript☆80May 21, 2018Updated 7 years ago
- gosec动态规则修改版☆12Jun 29, 2021Updated 4 years ago
- A list of publicly known but unfixed security bugs☆237Mar 9, 2018Updated 8 years ago
- Vulnerability research on the CA UIM Nimbus protocol☆15Sep 28, 2020Updated 5 years ago
- Tool to generate info for the AWS penetration testing request form☆19Oct 21, 2016Updated 9 years ago
- Find unicode codepoints to use in normalisation and transformation attacks.☆11Mar 15, 2021Updated 5 years ago
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告☆107Dec 13, 2017Updated 8 years ago
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆58Oct 31, 2019Updated 6 years ago
- Burp extension☆58Jun 18, 2018Updated 7 years ago
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆191May 17, 2016Updated 9 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago
- Simple utility to add a stream of DNS queries for random domains to obfuscate traffic patterns.☆11Oct 18, 2023Updated 2 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆260Aug 22, 2021Updated 4 years ago
- Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices☆18Oct 13, 2016Updated 9 years ago
- ☆28Oct 16, 2017Updated 8 years ago
- Official Stripe Mirakl Connector☆12Feb 26, 2026Updated 3 weeks ago
- Mogwai Java Management Extensions (JMX) Exploitation Toolkit☆174Jul 21, 2016Updated 9 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆38Nov 8, 2017Updated 8 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43May 1, 2020Updated 5 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆29Jul 3, 2019Updated 6 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 8 years ago