Advisories, proof of concept files and exploits that have been made public by @pedrib.
☆855Apr 16, 2025Updated 10 months ago
Alternatives and similar repositories for PoC
Users that are interested in PoC are comparing it to the libraries listed below
Sorting:
- Repository that tracks public exploits, vulnerabilities and advisories that I [co-]discovered or [co-]authored.☆114Feb 2, 2023Updated 3 years ago
- This is a repo which documents real bugs in real software to illustrate trends, learn how to prevent or find them more quickly.☆799Apr 22, 2022Updated 3 years ago
- ☆1,200Sep 2, 2022Updated 3 years ago
- Proof of Concepts☆1,322Nov 12, 2024Updated last year
- A collection of links related to VMware escape exploits☆1,494Sep 4, 2024Updated last year
- ☆1,380Jul 2, 2020Updated 5 years ago
- ☆2,512Jan 2, 2023Updated 3 years ago
- ☆284Nov 12, 2021Updated 4 years ago
- PoC CVE-2020-6308☆36Dec 29, 2020Updated 5 years ago
- the Network Protocol Fuzzer that we will want to use.☆793Jan 29, 2024Updated 2 years ago
- ✍️ A curated list of CVE PoCs.☆3,481Jan 4, 2022Updated 4 years ago
- PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)☆81Jan 15, 2021Updated 5 years ago
- Proofs-of-concept☆823Sep 3, 2024Updated last year
- The cheat sheet about Java Deserialization vulnerabilities☆3,164May 26, 2023Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆648Feb 21, 2024Updated 2 years ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,644Aug 28, 2025Updated 6 months ago
- Notes about attacking Jenkins servers☆2,090Jul 10, 2024Updated last year
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆4,371Updated this week
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆365Apr 14, 2022Updated 3 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆659Feb 1, 2025Updated last year
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆1,034Jun 3, 2021Updated 4 years ago
- ☆707Nov 27, 2024Updated last year
- ☆695Jul 4, 2022Updated 3 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,448Oct 1, 2025Updated 5 months ago
- Zero-day and N-day security vulnerability notes, analysis, and proof-of-concepts☆425Mar 20, 2022Updated 3 years ago
- Microsoft » Windows 10 : Security Vulnerabilities☆923Nov 26, 2025Updated 3 months ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆544Sep 8, 2021Updated 4 years ago
- Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.☆623Jun 13, 2020Updated 5 years ago
- 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.☆7,548Updated this week
- awesome list of browser exploitation tutorials☆2,267Sep 18, 2023Updated 2 years ago
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost☆1,348Dec 7, 2020Updated 5 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,802Sep 17, 2024Updated last year
- A collection of custom security tools for quick needs.☆3,284May 1, 2023Updated 2 years ago
- Deserialization payload generator for a variety of .NET formatters☆3,674Dec 23, 2024Updated last year
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,120Apr 21, 2024Updated last year
- CVE-2018-13379☆254Aug 14, 2019Updated 6 years ago
- A handy collection of my public exploits, all in one place.☆672Jan 6, 2026Updated last month
- Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.☆830Jun 12, 2021Updated 4 years ago