Alternatives and similar repositories for vulnhub-writeups:

Users that are interested in vulnhub-writeups are comparing it to the libraries listed below

• jas502n / CVE-2019-16278
  Directory transversal to remote code execution
  ☆69Updated 5 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆122Updated 7 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆140Updated 6 years ago
• jas502n / CVE-2019-12384
  Jackson Rce For CVE-2019-12384
  ☆98Updated 5 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago
• vah13 / SAP_exploit
  Here you can get full exploit for SAP NetWeaver AS JAVA
  ☆76Updated 7 years ago
• mzer0one / CVE-2020-7961-POC
  ☆116Updated 4 years ago
• buffered4ever / Exploits
  None of the exploit code or research is my own but all available in public domain
  ☆28Updated 5 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆105Updated 5 years ago
• pyn3rd / Apache-Tomcat-MongoDB-Remote-Code-Execution
  Apache Tomcat + MongoDB Remote Code Execution
  ☆114Updated 4 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆106Updated 5 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆60Updated 7 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆61Updated 8 years ago
• LandGrey / CVE-2019-7609
  exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
  ☆162Updated last year
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆101Updated 5 years ago
• NetSPI / BurpExtractor
  A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
  ☆91Updated 3 years ago
• jas502n / JWT_Brute
  JWT_Brute
  ☆32Updated 5 years ago
• BlackFan / WEB-INF-dict
  List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.
  ☆82Updated 7 years ago
• jas502n / CVE-2020-8193
  Citrix ADC Vulns
  ☆86Updated 4 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆180Updated 4 years ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆185Updated 5 years ago
• xl7dev / Exploit
  ☆60Updated 3 years ago
• jas502n / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows - CGI-BIN
  ☆76Updated 5 years ago
• zionspike / vulnhub-writeup
  ☆14Updated 4 years ago
• wetw0rk / Exploit-Development
  CVE-2020-8012, CVE-2016-10709, CVE-2017-17099, CVE-2017-18047, CVE-2019-1003000, CVE-2018-1999002
  ☆65Updated last month
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• g0rx / CVE-2018-7600-Drupal-RCE
  CVE-2018-7600 Drupal RCE
  ☆116Updated 6 years ago
• ZephrFish / XSSPayloads
  Cross Site Scripting Payloads -- Variations
  ☆71Updated 6 years ago
• IdealDreamLast / CVE-2020-9484
  用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞
  ☆52Updated 4 years ago