testanull / awesome-cve-poc
✍️ A curated list of CVE PoCs.
☆10Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for awesome-cve-poc
- An automation tool to help you to find weak functions in your target source code for potential attacks.☆19Updated 2 years ago
- async parser for JET☆21Updated 9 months ago
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Updated 7 months ago
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆13Updated last year
- Basic tool to automate backdooring PE files☆54Updated 2 years ago
- In progress persistent download/upload/execution tool using Windows BITS.☆42Updated 3 years ago
- SMBGhost (CVE-2020-0796) and SMBleed (CVE-2020-1206) Scanner☆46Updated 4 years ago
- ☆16Updated 3 years ago
- Noob Penetration tester☆10Updated 5 months ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆16Updated 3 years ago
- miscellaneous sploit scripts/hacks☆14Updated 4 months ago
- Simple C2 over the Trello API☆37Updated last year
- PoC for CVE-2021-4034 dubbed pwnkit☆33Updated 2 years ago
- DO NOT RUN THIS.☆47Updated 3 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- A basic username enumeration and password spraying tool aimed at spraying Microsoft's DOM based authentication using selenium.☆32Updated 11 months ago
- An async Python client library for Empire's RESTful API☆24Updated 11 months ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- All the members of bugbounty and infosec. If you don't know who to follow, see!☆35Updated 2 years ago
- Pentesting notes☆17Updated last year
- CVE-2020-13942 unauthenticated RCE POC through MVEL and OGNL injection☆29Updated 3 years ago
- Related subdomains finder☆29Updated 2 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆15Updated last year
- A collection of OSCE preparation resources.☆23Updated 5 years ago
- Subdomain Enumeration and Scanner☆32Updated 4 years ago
- A framework for easy payloads development and deployment, collection of customizable XSS payloads☆26Updated 2 years ago
- Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 a…☆24Updated 4 years ago
- Invoke-SocksProxy is a PowerShell script designed to create reverse proxies.☆45Updated 3 years ago