xct / vulnbinsView external linksLinks
vulnerable windows binaries for exploitation practice
☆49Jun 6, 2022Updated 3 years ago
Alternatives and similar repositories for vulnbins
Users that are interested in vulnbins are comparing it to the libraries listed below
Sorting:
- I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …☆52Nov 15, 2023Updated 2 years ago
- Get SYSTEM via SeDebugPrivilege☆24Jun 6, 2022Updated 3 years ago
- Signatus - A Vulnerable TCP server to practice Win32 exploitation☆53Jun 13, 2021Updated 4 years ago
- rcat☆75Mar 7, 2022Updated 3 years ago
- Exploits made practicing for OSCE☆23Dec 3, 2020Updated 5 years ago
- QuoteDB - A Vulnerable TCP Server to practice Win32 exploitation☆80Dec 21, 2023Updated 2 years ago
- POC CVE-2019-0708 with python script!☆14Jun 24, 2019Updated 6 years ago
- TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection☆42Oct 8, 2022Updated 3 years ago
- A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)☆72Jul 29, 2022Updated 3 years ago
- OSED Practice binary☆25Nov 23, 2023Updated 2 years ago
- A curated list of resources for the OSED journey.☆72Feb 3, 2022Updated 4 years ago
- Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation☆31Mar 21, 2021Updated 4 years ago
- CLI monitor for windows process- & file activity☆98Nov 20, 2020Updated 5 years ago
- Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course☆27Mar 13, 2024Updated last year
- ☆12Aug 1, 2023Updated 2 years ago
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆30Nov 6, 2022Updated 3 years ago
- BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆17Jul 22, 2022Updated 3 years ago
- Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format☆65Jun 30, 2022Updated 3 years ago
- bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)☆600Jul 15, 2024Updated last year
- Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption☆19Aug 5, 2022Updated 3 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆64Dec 16, 2023Updated 2 years ago
- Tools I use on red team engagements and more☆33Mar 14, 2024Updated last year
- Find kernel32 base and API addresses. Simple C++ implementation☆24Apr 7, 2022Updated 3 years ago
- SeManageVolumePrivilege to SYSTEM☆146Nov 22, 2023Updated 2 years ago
- SeRestorePrivilege to SYSTEM☆133Oct 8, 2021Updated 4 years ago
- ORDER - A small Python web-app to practice blind SQLi in order by☆21Mar 21, 2021Updated 4 years ago
- ☆21Dec 1, 2021Updated 4 years ago
- Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts☆23Sep 15, 2023Updated 2 years ago
- A collection of code snippets built to assist with breaking chains.☆126Apr 24, 2024Updated last year
- This repository contains a collection of scripts I use regularly for offensive security-related tasks.☆15Jan 17, 2026Updated 3 weeks ago
- ☆199Feb 14, 2024Updated last year
- ☆216Mar 26, 2024Updated last year
- Find .net assemblies locally☆131Oct 14, 2022Updated 3 years ago
- A collection of Windows x32 exploits created while preparing for the OSED certification exam☆25Jun 29, 2021Updated 4 years ago
- Shellcode capable of bypassing EAF / IAF mitigations☆28Apr 11, 2023Updated 2 years ago
- Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools☆280Sep 18, 2025Updated 4 months ago
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆72Mar 6, 2024Updated last year
- Repository for LNK stuff☆31Aug 31, 2022Updated 3 years ago
- Your Skyfall Infrastructure Pack☆90Jan 25, 2026Updated 2 weeks ago