Proof-of-concept codes created as part of security research done by Google Security Team.
☆1,879Mar 12, 2021Updated 4 years ago
Alternatives and similar repositories for security-research-pocs
Users that are interested in security-research-pocs are comparing it to the libraries listed below
Sorting:
- DOM fuzzer☆1,769Nov 26, 2024Updated last year
- A collection of JavaScript engine CVEs with PoCs☆2,316Sep 3, 2019Updated 6 years ago
- ✍️ A curated list of CVE PoCs.☆3,481Jan 4, 2022Updated 4 years ago
- 🔪Browser logic vulnerabilities☆697Jan 23, 2021Updated 5 years ago
- My proof-of-concept exploits for the Linux kernel☆1,564Sep 11, 2025Updated 5 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,482Oct 12, 2024Updated last year
- Security Research from the Microsoft Security Response Center (MSRC)☆1,379Aug 8, 2024Updated last year
- Browser's XSS Filter Bypass Cheat Sheet☆1,150May 6, 2017Updated 8 years ago
- poc or exp of android vulnerability☆407Dec 30, 2017Updated 8 years ago
- A Javascript library for browser exploitation☆894Feb 12, 2019Updated 7 years ago
- Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)☆3,310Jan 6, 2026Updated 2 months ago
- Collection of CTF Web challenges I made☆2,820Aug 31, 2025Updated 6 months ago
- A collection of links related to Linux kernel security and exploitation☆6,368Updated this week
- A tiny and cute URL fuzzer☆402Nov 10, 2022Updated 3 years ago
- Set of tests for fuzzing engines☆1,467Aug 25, 2021Updated 4 years ago
- The cheat sheet about Java Deserialization vulnerabilities☆3,171May 26, 2023Updated 2 years ago
- A repository for learning various heap exploitation techniques.☆8,450Jan 15, 2026Updated last month
- jemalloc heap exploitation framework☆465Nov 29, 2021Updated 4 years ago
- A JavaScript Engine Fuzzer☆2,161Mar 3, 2026Updated last week
- A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on…☆5,762Apr 3, 2024Updated last year
- ☆522Feb 22, 2020Updated 6 years ago
- awesome list of browser exploitation tutorials☆2,266Sep 18, 2023Updated 2 years ago
- OpenSource My ImageMagick Fuzzer ..☆298Jul 26, 2017Updated 8 years ago
- Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.☆1,299Jun 29, 2023Updated 2 years ago
- A collection of curated Java Deserialization Exploits☆591May 16, 2021Updated 4 years ago
- A set of exploitation/reversing aids for IDA☆421Nov 28, 2017Updated 8 years ago
- Project Zero Docs and Tools☆842Feb 4, 2026Updated last month
- some vul☆790Apr 25, 2025Updated 10 months ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,123Apr 21, 2024Updated last year
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆6,086Updated this week
- HTTPLeaks - All possible ways, a website can leak HTTP requests☆2,100Jan 3, 2026Updated 2 months ago
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆4,378Mar 3, 2026Updated last week
- Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android☆1,293Mar 2, 2026Updated last week
- Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels☆591Jan 10, 2019Updated 7 years ago
- A list of my CVE's with POCs☆682Dec 15, 2020Updated 5 years ago
- Some kernel fuzzing paper about windows and linux☆255Oct 9, 2017Updated 8 years ago
- A POC for the Huge Dirty Cow vulnerability (CVE-2017-1000405)☆201Nov 30, 2017Updated 8 years ago
- A Python interface to AFL, allowing for easy injection of testcases and other functionality.☆645Apr 30, 2019Updated 6 years ago
- Cure53 Browser Security White Paper☆299Nov 29, 2017Updated 8 years ago