mm0r1 / exploits

Related projects ⓘ

Alternatives and complementary repositories for exploits

• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆2,873Updated last year
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,540Updated 3 years ago
• n0b0dyCN / redis-rogue-server
  Redis(<=5.0.5) RCE
  ☆1,007Updated last year
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,248Updated last month
• Dliv3 / Venom
  Venom - A Multi-hop Proxy for Penetration Testers
  ☆2,012Updated 2 years ago
• alphaSeclab / awesome-burp-suite
  Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
  ☆1,004Updated 4 years ago
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,858Updated last year
• xl7dev / WebShell
  Webshell && Backdoor Collection
  ☆1,830Updated 4 years ago
• 0xn0ne / weblogicScanner
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆2,011Updated 11 months ago
• gloxec / CrossC2
  generate CobaltStrike's cross-platform payload
  ☆2,286Updated last year
• lijiejie / ds_store_exp
  A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
  ☆1,531Updated last year
• Ridter / redis-rce
  Redis 4.x/5.x RCE
  ☆934Updated 2 years ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago
• WangYihang / Platypus
  A modern multiple reverse shell sessions manager written in go
  ☆1,516Updated last week
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆2,908Updated last month
• WangYihang / GitHacker
  🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
  ☆1,427Updated this week
• CHYbeta / Code-Audit-Challenges
  Code-Audit-Challenges
  ☆975Updated 6 years ago
• l3m0n / Bypass_Disable_functions_Shell
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,184Updated last year
• chompie1337 / SMBGhost_RCE_PoC
  ☆1,317Updated 4 years ago
• yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
  bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
  ☆1,142Updated 3 years ago
• Ascotbe / Kernelhub
  Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability detai…
  ☆2,932Updated last year
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,706Updated 4 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,540Updated 4 years ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,794Updated 6 months ago
• firefart / dirtycow
  Dirty Cow exploit - CVE-2016-5195
  ☆860Updated 3 years ago
• sting8k / BurpSuite_403Bypasser
  Burpsuite Extension to bypass 403 restricted directory
  ☆1,567Updated last year
• danigargu / CVE-2020-0796
  CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
  ☆1,304Updated 3 years ago
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆584Updated 7 years ago
• Ekultek / BlueKeep
  Proof of concept for CVE-2019-0708
  ☆1,174Updated 2 years ago
• 3gstudent / Pentest-and-Development-Tips
  A collection of pentest and development tips
  ☆1,099Updated 2 years ago