Alternatives and similar repositories for POCs

Users that are interested in POCs are comparing it to the libraries listed below

• MWR-CyberSec / AD-CS-Forest-Exploiter
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆99Updated last year
• EQSTLab / CVE-2024-46538
  PfSense Stored XSS lead to Arbitrary Code Execution exploit
  ☆47Updated 7 months ago
• horizon3ai / CVE-2024-9464
  Proof of Concept Exploit for CVE-2024-9464
  ☆45Updated 10 months ago
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆61Updated 4 months ago
• ASP4RUX / bypassEDR-AV
  ☆58Updated 9 months ago
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆87Updated 5 months ago
• sinsinology / CVE-2024-29849
  Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
  ☆90Updated last year
• watchtowrlabs / connectwise-screenconnect_auth-bypass-add-user-poc
  ☆71Updated last year
• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆65Updated this week
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆47Updated 2 months ago
• ph0ebus / Tomcat-CVE-2024-50379-Poc
  RCE through a race condition in Apache Tomcat
  ☆56Updated 8 months ago
• chebuya / exploits
  Repo for all my exploits/PoCs
  ☆51Updated 3 months ago
• seriotonctf / Red-Team-Notes
  ☆44Updated last month
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆110Updated 2 months ago
• sinsinology / CVE-2024-6670
  ☆34Updated 11 months ago
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆92Updated 4 months ago
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆40Updated 2 years ago
• macrl2000 / reaper-wu
  vulnlab.com reaper writeup
  ☆26Updated last year
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆29Updated 11 months ago
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆22Updated last year
• jumpycastle / rre-burp
  Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025
  ☆73Updated 2 weeks ago
• jeanlucdupont / EXEfromCER
  PoC that downloads an executable from a public SSL certificate
  ☆125Updated last month
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• kn0x0x / CVE-2025-32756-POC
  Proof of Concept for CVE-2025-32756 - A critical stack-based buffer overflow vulnerability affecting multiple Fortinet products.
  ☆82Updated 2 months ago
• 0xBienCuit / InfraRed-AWS
  ☆60Updated 10 months ago
• watchtowrlabs / fortios-auth-bypass-check-CVE-2024-55591
  ☆68Updated 7 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated last month
• R3DRUN3 / vermilion
  Linux post exploitation tool for info gathering and exfiltration 🐧📡💀
  ☆88Updated last month
• hackerhouse-opensource / telnetclientpoc
  Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit
  ☆56Updated 3 months ago
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆114Updated last year