kacperszurek/exploits

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kacperszurek/exploits)

kacperszurek / exploits

☆267

Alternatives and similar repositories for exploits

Users that are interested in exploits are comparing it to the libraries listed below

Sorting:

quentinhardy / scriptsAndExploits
View on GitHub
Some scripts and exploits
☆148Jul 9, 2018Updated 7 years ago
mbechler / serjs
View on GitHub
A Java serializer in JavaScript
☆80May 21, 2018Updated 7 years ago
GoSecure / break-fast-serial
View on GitHub
A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
☆55Mar 27, 2017Updated 8 years ago
Coalfire-Research / java-deserialization-exploits
View on GitHub
A collection of curated Java Deserialization Exploits
☆591May 16, 2021Updated 4 years ago
GrrrDog / ZeroNights-HackQuest-2016
View on GitHub
2 web tasks from ZeroNights HackQuest 2016
☆50Mar 24, 2017Updated 8 years ago
mufeedvh / CVE-2019-8449
View on GitHub
CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4
☆68Feb 3, 2020Updated 6 years ago
jjf012 / PassiveScanner
View on GitHub
a passive scanner based on Mitmproxy and Arachni
☆108Aug 17, 2017Updated 8 years ago
shengqi158 / S2-055-PoC
View on GitHub
S2-055的环境，基于rest-show-case改造
☆37Dec 7, 2017Updated 8 years ago
r3dxpl0it / Apache-Superset-Remote-Code-Execution-PoC-CVE-2018-8021
View on GitHub
CVE-2018-8021 Proof-Of-Concept and Exploit
☆106Dec 3, 2018Updated 7 years ago
erpscanteam / CVE-2018-2380
View on GitHub
PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM
☆52Mar 14, 2018Updated 7 years ago
pinnace / burp-jwt-fuzzhelper-extension
View on GitHub
JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
☆100Jul 29, 2019Updated 6 years ago
jpiechowka / jenkins-cve-2016-0792
View on GitHub
Exploit for Jenkins serialization vulnerability - CVE-2016-0792
☆49Aug 2, 2017Updated 8 years ago
petercunha / jenkins-rce
View on GitHub
Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
☆298Jun 10, 2019Updated 6 years ago
projectzeroindia / CVE-2019-11510
View on GitHub
Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)
☆364Jan 11, 2020Updated 6 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆612Mar 4, 2021Updated 5 years ago
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆579Jan 28, 2020Updated 6 years ago
FSecureLABS / CVE-2018-4121
View on GitHub
macOS 10.13.3 (17D47) Safari Wasm Exploit
☆119Apr 19, 2018Updated 7 years ago
joxeankoret / CVE-2017-7494
View on GitHub
Remote root exploit for the SAMBA CVE-2017-7494 vulnerability
☆260Mar 9, 2021Updated 4 years ago
LandGrey / CVE-2019-7609
View on GitHub
exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
☆166Aug 29, 2023Updated 2 years ago
incredibleindishell / exploit-code-by-me
View on GitHub
Exploit code developed/reproduced by me
☆90Jan 25, 2023Updated 3 years ago
bindecy / HugeDirtyCowPOC
View on GitHub
A POC for the Huge Dirty Cow vulnerability (CVE-2017-1000405)
☆201Nov 30, 2017Updated 8 years ago
SadProcessor / EmpireDog
View on GitHub
A collection of PowerShell Modules for BloodHound/Empire Orchestration
☆109Sep 26, 2017Updated 8 years ago
nccgroup / freddy
View on GitHub
Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
☆584Sep 7, 2021Updated 4 years ago
TheCyberGeek / CVE-2019-19268
View on GitHub
New Found 0-days!
☆36Dec 4, 2019Updated 6 years ago
immunIT / CVE-2018-11759
View on GitHub
Proof of concept showing how to exploit the CVE-2018-11759
☆40Dec 11, 2018Updated 7 years ago
0x09AL / DNS-Persist
View on GitHub
DNS-Persist is a post-exploitation agent which uses DNS for command and control.
☆208Nov 20, 2017Updated 8 years ago
g0rx / Drupal-SA-CORE-2019-003
View on GitHub
CVE-2019-6340-Drupal SA-CORE-2019-003
☆32Feb 24, 2019Updated 7 years ago
adamyordan / cve-2019-1003000-jenkins-rce-poc
View on GitHub
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…
☆316Apr 1, 2019Updated 6 years ago
NickstaDB / BaRMIe
View on GitHub
Java RMI enumeration and attack tool.
☆743Sep 28, 2017Updated 8 years ago
yassineaboukir / CVE-2018-0296
View on GitHub
Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
☆206Feb 15, 2024Updated 2 years ago
nccgroup / BurpSuiteHTTPSmuggler
View on GitHub
A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
☆736May 4, 2019Updated 6 years ago
cujanovic / SSRF-Testing
View on GitHub
SSRF (Server Side Request Forgery) testing resources
☆2,482Oct 12, 2024Updated last year
ambionics / phpggc
View on GitHub
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
☆3,756Sep 29, 2025Updated 5 months ago
mackleadmire / CVE-2018-3191-Rce-Exploit
View on GitHub
☆17Oct 25, 2018Updated 7 years ago
DownWithUp / CVE-2018-16712
View on GitHub
PoC Code for CVE-2018-16712 (exploit by MmMapIoSpace)
☆25Dec 1, 2018Updated 7 years ago
mpgn / CVE-2019-0192
View on GitHub
RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
☆210Mar 10, 2019Updated 6 years ago
federicodotta / Java-Deserialization-Scanner
View on GitHub
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
☆799Nov 7, 2021Updated 4 years ago
epinna / tplmap
View on GitHub
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
☆4,123Apr 21, 2024Updated last year
giMini / mimiDbg
View on GitHub
PowerShell oneliner to retrieve wdigest passwords from the memory
☆220Dec 11, 2017Updated 8 years ago