Alternatives and similar repositories for exploits

Users that are interested in exploits are comparing it to the libraries listed below

• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,185Updated 2 years ago
• WangYihang / GitHacker
  🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
  ☆1,555Updated 2 months ago
• n0b0dyCN / redis-rogue-server
  Redis(<=5.0.5) RCE
  ☆1,090Updated last year
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,593Updated 4 years ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,585Updated 4 months ago
• Ridter / redis-rce
  Redis 4.x/5.x RCE
  ☆965Updated 3 years ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,764Updated last year
• 0xn0ne / weblogicScanner
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆2,057Updated last year
• CHYbeta / Code-Audit-Challenges
  Code-Audit-Challenges
  ☆983Updated 6 years ago
• WangYihang / Platypus
  A modern multiple reverse shell sessions manager written in go
  ☆1,609Updated last week
• xl7dev / WebShell
  Webshell && Backdoor Collection
  ☆1,922Updated 5 years ago
• l3m0n / Bypass_Disable_functions_Shell
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Updated last year
• yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
  bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
  ☆1,159Updated 4 years ago
• Ascotbe / Kernelhub
  Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability detai…
  ☆3,157Updated 2 years ago
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆3,197Updated 3 weeks ago
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆598Updated 8 years ago
• lijiejie / ds_store_exp
  A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
  ☆1,670Updated 2 years ago
• blasty / CVE-2021-3156
  ☆986Updated 4 years ago
• noraj / flask-session-cookie-manager
  Flask Session Cookie Decoder/Encoder
  ☆720Updated 7 months ago
• firefart / dirtycow
  Dirty Cow exploit - CVE-2016-5195
  ☆898Updated last month
• Dliv3 / Venom
  Venom - A Multi-hop Proxy for Penetration Testers
  ☆2,119Updated 3 years ago
• gloxec / CrossC2
  generate CobaltStrike's cross-platform payload
  ☆2,494Updated last year
• whwlsfb / Log4j2Scan
  Log4j2 RCE Passive Scanner plugin for BurpSuite
  ☆824Updated 2 years ago
• sting8k / BurpSuite_403Bypasser
  Burpsuite Extension to bypass 403 restricted directory
  ☆1,634Updated 2 years ago
• worawit / CVE-2021-3156
  Sudo Baron Samedit Exploit
  ☆771Updated 3 years ago
• 3gstudent / Pentest-and-Development-Tips
  A collection of pentest and development tips
  ☆1,122Updated 3 years ago
• alphaSeclab / awesome-burp-suite
  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
  ☆1,032Updated 5 years ago
• RhinoSecurityLabs / CVEs
  Proof-of-Concept exploits for CVEs found by the team at Rhino Security Labs
  ☆873Updated 3 months ago
• YDHCUI / CNVD-2020-10487-Tomcat-Ajp-lfi
  Tomcat-Ajp协议文件读取漏洞
  ☆786Updated 5 years ago
• TheKingOfDuck / easyXssPayload
  XssPayload List . Usage:
  ☆730Updated 5 years ago