Alternatives and similar repositories for POCs

Users that are interested in POCs are comparing it to the libraries listed below

• EQSTLab / CVE-2024-46538
  PfSense Stored XSS lead to Arbitrary Code Execution exploit
  ☆48Updated 9 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆101Updated last year
• horizon3ai / CVE-2024-9464
  Proof of Concept Exploit for CVE-2024-9464
  ☆45Updated last year
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆28Updated last year
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆87Updated 7 months ago
• sinsinology / CVE-2024-29849
  Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
  ☆90Updated last year
• ASP4RUX / bypassEDR-AV
  ☆59Updated 11 months ago
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆61Updated 6 months ago
• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆87Updated 2 months ago
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆124Updated 4 months ago
• macrl2000 / reaper-wu
  vulnlab.com reaper writeup
  ☆27Updated 2 years ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆63Updated last year
• sinsinology / CVE-2024-6670
  ☆34Updated last year
• watchtowrlabs / CVE-2024-40711
  Pre-Auth Exploit for CVE-2024-40711
  ☆53Updated last year
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆23Updated last year
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆39Updated 2 years ago
• seriotonctf / Red-Team-Notes
  ☆44Updated 2 weeks ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 3 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆78Updated 11 months ago
• TheSleekBoyCompany / AnsibleHound
  Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph
  ☆61Updated 2 months ago
• watchtowrlabs / fortios-auth-bypass-check-CVE-2024-55591
  ☆68Updated 9 months ago
• nopcorn / DuckDuckC2
  A proof-of-concept C2 channel through DuckDuckGo's image proxy service
  ☆74Updated last year
• ph0ebus / Tomcat-CVE-2024-50379-Poc
  RCE through a race condition in Apache Tomcat
  ☆56Updated 10 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆63Updated last year
• 0xBienCuit / InfraRed-AWS
  ☆61Updated last year
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆75Updated last year
• horizon3ai / CVE-2023-48788
  Fortinet FortiClient EMS SQL Injection
  ☆50Updated last year
• mlcsec / proctools
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆115Updated last year
• two06 / CerealKiller
  .NET deserialization hunter
  ☆80Updated last year
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year