mm0r1 / exploits

Related projects ⓘ

Alternatives and complementary repositories for exploits

• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆2,867Updated last year
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,535Updated 3 years ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,229Updated 3 weeks ago
• WangYihang / GitHacker
  🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
  ☆1,421Updated last year
• 0xn0ne / weblogicScanner
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆2,008Updated 11 months ago
• WangYihang / Platypus
  A modern multiple reverse shell sessions manager written in go
  ☆1,515Updated last week
• CHYbeta / Code-Audit-Challenges
  Code-Audit-Challenges
  ☆974Updated 5 years ago
• alphaSeclab / awesome-burp-suite
  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
  ☆1,001Updated 4 years ago
• Dliv3 / Venom
  Venom - A Multi-hop Proxy for Penetration Testers
  ☆2,003Updated 2 years ago
• lijiejie / ds_store_exp
  A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
  ☆1,524Updated last year
• Ascotbe / Kernelhub
  Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability detai…
  ☆2,928Updated last year
• n0b0dyCN / redis-rogue-server
  Redis(<=5.0.5) RCE
  ☆1,002Updated last year
• gloxec / CrossC2
  generate CobaltStrike's cross-platform payload
  ☆2,276Updated 11 months ago
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆2,892Updated last month
• xl7dev / WebShell
  Webshell && Backdoor Collection
  ☆1,820Updated 4 years ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,343Updated 3 weeks ago
• chompie1337 / SMBGhost_RCE_PoC
  ☆1,315Updated 4 years ago
• Ridter / redis-rce
  Redis 4.x/5.x RCE
  ☆932Updated 2 years ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,701Updated 3 months ago
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,857Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆2,986Updated 4 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,784Updated 6 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,537Updated 4 years ago
• yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
  bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
  ☆1,140Updated 3 years ago
• knownsec / pocsuite3
  pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
  ☆3,645Updated 6 months ago
• zer0yu / Awesome-CobaltStrike
  List of Awesome CobaltStrike Resources
  ☆4,011Updated last year
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,897Updated last week
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆584Updated 7 years ago
• RhinoSecurityLabs / CVEs
  A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
  ☆797Updated 4 months ago