Gather and update all available and newest CVEs with their PoC.
β7,573Updated this week
Alternatives and similar repositories for cve
Users that are interested in cve are comparing it to the libraries listed below
Sorting:
- π‘ PoC auto collect from GitHub. β οΈ Be careful Malware.β7,548Updated this week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β11,983Updated this week
- Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rulesβ¦β5,961Jul 12, 2024Updated last year
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β27,194Updated this week
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,259Updated this week
- Adversary Emulation Frameworkβ10,717Feb 23, 2026Updated last week
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password π‘οΈβ6,415Dec 20, 2025Updated 2 months ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,479Nov 16, 2025Updated 3 months ago
- Rockyou for web fuzzingβ3,028Feb 11, 2026Updated 2 weeks ago
- The Havoc Frameworkβ8,190Dec 18, 2025Updated 2 months ago
- Pre-Built Vulnerable Environments Based on Docker-Composeβ20,312Feb 14, 2026Updated 2 weeks ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTFβ75,488Feb 16, 2026Updated 2 weeks ago
- A Security Tool for Bug Bounty, Pentest and Red Teaming.β4,184Updated this week
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!β1,941Oct 7, 2023Updated 2 years ago
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)β19,384Updated this week
- Quickly discover exposed hosts on the internet using multiple search engines.β2,827Feb 19, 2026Updated last week
- Fast web fuzzer written in Goβ15,637Apr 24, 2025Updated 10 months ago
- Real-world infosec wordlists, updated regularlyβ1,640Updated this week
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,775Updated this week
- Adversary simulation and Red teaming platform with AIβ4,971Jan 18, 2026Updated last month
- Tools and Techniques for Red Team / Penetration Testingβ8,534Mar 18, 2025Updated 11 months ago
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β9,607Feb 21, 2026Updated last week
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sockβ7,111Mar 12, 2024Updated last year
- game of active directoryβ7,484Jul 16, 2025Updated 7 months ago
- HTTP parameter discovery suite.β6,091Feb 20, 2025Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flawsβ3,925Oct 4, 2025Updated 4 months ago
- Fast passive subdomain enumeration tool.β13,124Feb 19, 2026Updated last week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,851Updated this week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,082Aug 14, 2024Updated last year
- Asset inventory of over 800 public bug bounty programs.β1,519Feb 14, 2025Updated last year
- A collection of awesome one-liner scripts especially for bug bounty tips.β3,077Jul 29, 2024Updated last year
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.β6,498Jan 18, 2026Updated last month
- All about bug bounty (bypasses, payloads, and etc)β6,655Sep 8, 2023Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.β15,493Updated this week
- Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and nβ¦β10,923Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ6,389May 1, 2025Updated 10 months ago
- An OOB interaction gathering server and client libraryβ4,201Feb 19, 2026Updated last week
- In-depth attack surface mapping and asset discoveryβ14,159Feb 22, 2026Updated last week
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,837Jan 1, 2025Updated last year