Alternatives and similar repositories for exploits

Users that are interested in exploits are comparing it to the libraries listed below

• tylerdotrar / SigmaPotato
  SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…
  ☆453Updated last year
• mverschu / CVE-2025-33073
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆669Updated 3 weeks ago
• jakabakos / Apache-OFBiz-Authentication-Bypass
  This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.
  ☆72Updated last year
• evkl1d / CVE-2023-46604
  ☆39Updated 2 years ago
• expl0itabl3 / Toolies
  Ad hoc collection of Red Teaming & Active Directory tooling.
  ☆226Updated 2 years ago
• MrW0l05zyn / pentesting
  Herramientas y utilidades de pentesting, ethical hacking y seguridad ofensiva.
  ☆41Updated 8 months ago
• 0x6rss / CVE-2025-24071_PoC
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆395Updated 10 months ago
• s-3ntinel / imgjs_polygloter
  ☆24Updated 4 years ago
• g1vi / CVE-2023-2640-CVE-2023-32629
  GameOver(lay) Ubuntu Privilege Escalation
  ☆132Updated 2 years ago
• k4sth4 / SeBackupPrivilege
  Windows Privilege Escalation
  ☆50Updated 3 years ago
• fearsoff-org / CVE-2025-49113
  ☆97Updated 8 months ago
• dashagriiva / OSCP-Prep-1
  A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
  ☆44Updated 7 years ago
• Immersive-Labs-Sec / CVE-2025-31161
  Proof of Concept for CVE-2025-31161 / CVE-2025-2825
  ☆47Updated 10 months ago
• senzee1984 / OSCE3-Notes
  ☆80Updated 2 years ago
• miko550 / CVE-2023-32315
  Openfire Console Authentication Bypass Vulnerability with RCE plugin
  ☆55Updated last year
• Keramas / DS_Walk
  Python tool for enumerating directories and files on web servers that contain a publicly readable .ds_store file.
  ☆69Updated 4 years ago
• LOURC0D3 / CVE-2024-4367-PoC
  CVE-2024-4367 & CVE-2024-34342 Proof of Concept
  ☆190Updated last year
• the-emmons / CVE-2023-43177
  CrushFTP <= 10.5.1 Remote Code Execution. Researchers: Ryan Emmons, Evan Malamis
  ☆17Updated last year
• ttpreport / ligolo-mp
  Multiplayer pivoting solution
  ☆482Updated 3 months ago
• jakobfriedl / precompiled-binaries
  Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments
  ☆240Updated 11 months ago
• X0RW3LL / XenSpawn
  Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)
  ☆159Updated last year
• Chocapikk / CVE-2024-25600
  Unauthenticated Remote Code Execution – Bricks <= 1.9.6
  ☆179Updated last year
• jakabakos / CVE-2023-36664-Ghostscript-command-injection
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆130Updated 2 years ago
• hackinaggie / OSEP-Tools-v2
  A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additions
  ☆97Updated last month
• jephk9 / oscp-jewels
  Gitbook: OSCP-Jewels
  ☆12Updated 4 years ago
• Extravenger / OSEPlayground
  A collection of useful tools and scripts were developed and gathered throughout the Offensive Security's PEN-300 (OSEP) course.
  ☆328Updated 6 months ago
• wh0amitz / SharpADWS
  Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
  ☆585Updated last year
• H454NSec / CVE-2023-42793
  JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit
  ☆45Updated last year
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆283Updated last year
• Acorzo1983 / SQLMapCG
  SQLMap Command Generator: A web-based tool to easily generate customizable SQLMap commands for testing SQL injection vulnerabilities. Fea…
  ☆76Updated last year