jhftss / POCLinks
A public collection of POCs & Exploits for the vulnerabilities I discovered
☆380Updated 4 months ago
Alternatives and similar repositories for POC
Users that are interested in POC are comparing it to the libraries listed below
Sorting:
- Work in progress...☆346Updated this week
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆283Updated 9 months ago
- Oversecured Vulnerable iOS App☆221Updated last year
- ☆334Updated last year
- BLACKHAT USA2022 PDF Public☆503Updated 2 years ago
- An automatic Blind ROP exploitation tool☆204Updated last year
- Fuzz iOS URL schemes☆117Updated this week
- Slides and videos from my public speeches / conferences☆74Updated last week
- Massive Mobile Security Framework☆284Updated last week
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆206Updated last month
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆271Updated 2 years ago
- Take over macOS Electron apps' TCC permissions☆204Updated last year
- 1337 Wordlists for Bug Bounty Hunting☆832Updated 4 months ago
- An iOS app that lets you practice your Frida skills☆169Updated 2 years ago
- Pwn2Own Vancouver 2023 Ubuntu LPE exploit☆160Updated last year
- A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)☆315Updated 2 years ago
- A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager☆350Updated 2 years ago
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆110Updated 2 years ago
- Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit☆272Updated last year
- Black box fuzzer for web applications☆426Updated 11 months ago
- LPE exploit for CVE-2023-21768☆488Updated last year
- Advanced exploits that I wrote for Pwn2Own competitions and other occasions☆168Updated last year
- ☆529Updated 11 months ago
- A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.☆212Updated 3 years ago
- ☆215Updated last year
- ios tingz☆62Updated 2 years ago
- Safari 1day RCE Exploit☆138Updated 2 months ago
- Repository to store exploits created by Assetnotes Security Research team☆178Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆341Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆189Updated 3 months ago