xct/vulnbins external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xct/vulnbins

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xct/vulnbins)

Close

xct / vulnbinsView on GitHubMore

• External links
• Readme badge

vulnerable windows binaries for exploitation practice

☆46Jun 6, 2022Updated 3 years ago

Alternatives and similar repositories for vulnbins

Users that are interested in vulnbins are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Sh3lldon / RemoteApp

  View on GitHub
  I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …
  ☆50Nov 15, 2023Updated 2 years ago
• xct / SeDebugAbuse

  View on GitHub
  Get SYSTEM via SeDebugPrivilege
  ☆24Jun 6, 2022Updated 3 years ago
• bmdyy / signatus

  View on GitHub
  Signatus - A Vulnerable TCP server to practice Win32 exploitation
  ☆51Jun 13, 2021Updated 4 years ago
• xct / rcat

  View on GitHub
  rcat
  ☆75Mar 7, 2022Updated 4 years ago
• bmdyy / quote_db

  View on GitHub
  QuoteDB - A Vulnerable TCP Server to practice Win32 exploitation
  ☆78Dec 21, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• cvencoder / cve-2019-0708

  View on GitHub
  POC CVE-2019-0708 with python script!
  ☆14Jun 24, 2019Updated 6 years ago
• dest-3 / OSED_Resources

  View on GitHub
  A curated list of resources for the OSED journey.
  ☆72Feb 3, 2022Updated 4 years ago
• ommadawn46 / win-x86-shellcoder

  View on GitHub
  A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
  ☆73Jul 29, 2022Updated 3 years ago
• epi052 / osed-scripts

  View on GitHub
  bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
  ☆606Jul 15, 2024Updated last year
• bmdyy / testr

  View on GitHub
  TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection
  ☆42Oct 8, 2022Updated 3 years ago
• Wh04m1001 / MSIExecEoP

  View on GitHub
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆30Nov 6, 2022Updated 3 years ago
• xct / SeManageVolumeAbuse

  View on GitHub
  SeManageVolumePrivilege to SYSTEM
  ☆149Nov 22, 2023Updated 2 years ago
• slemire / bof-adopt

  View on GitHub
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆17Jul 22, 2022Updated 3 years ago
• jayesther / OSEP_OSED_TOOLS

  View on GitHub
  Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course
  ☆27Mar 13, 2024Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• xct / winpspy

  View on GitHub
  CLI monitor for windows process- & file activity
  ☆97Nov 20, 2020Updated 5 years ago
• bmdyy / chat.js

  View on GitHub
  Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation
  ☆31Mar 21, 2021Updated 5 years ago
• patrickhener / invictus

  View on GitHub
  OSED Practice binary
  ☆26Nov 23, 2023Updated 2 years ago
• ToBeatElite / InfoSecNotes

  View on GitHub
  ☆12Aug 1, 2023Updated 2 years ago
• szymex73 / bloodhound-convert

  View on GitHub
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆64Jun 30, 2022Updated 3 years ago
• Darksidesfear / OSED-CheatSheet

  View on GitHub
  Exploit Development CheatSheet.
  ☆18Aug 9, 2021Updated 4 years ago
• bmdyy / osed_prep

  View on GitHub
  A collection of Windows x32 exploits created while preparing for the OSED certification exam
  ☆25Jun 29, 2021Updated 4 years ago
• bmdyy / order

  View on GitHub
  ORDER - A small Python web-app to practice blind SQLi in order by
  ☆22Mar 21, 2021Updated 5 years ago
• xct / SeRestoreAbuse

  View on GitHub
  SeRestorePrivilege to SYSTEM
  ☆136Oct 8, 2021Updated 4 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• r0r0x-xx / OSED-Pre

  View on GitHub
  ☆198Feb 14, 2024Updated 2 years ago
• purpl3f0xsecur1ty / OSCE-prep

  View on GitHub
  Exploits made practicing for OSCE
  ☆23Dec 3, 2020Updated 5 years ago
• kyle41111 / RedTeamHelp

  View on GitHub
  Tools I use on red team engagements and more
  ☆34Mar 14, 2024Updated 2 years ago
• ivellioscolin / pykd

  View on GitHub
  A pykd maintenance fork
  ☆74Feb 26, 2025Updated last year
• lum8rjack / caddy-c2

  View on GitHub
  Caddy v2 module to filter requests based on C2 profiles
  ☆46Apr 24, 2025Updated 11 months ago
• ApexPredator-InfoSec / WUMED-OSED

  View on GitHub
  Notes template for Offensive Security's EXP-301 course and OSED exam
  ☆19Mar 4, 2022Updated 4 years ago
• Ap3x / COFF-Loader

  View on GitHub
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆70Mar 6, 2026Updated last month
• MattiaCossu / PE-Linux

  View on GitHub
  my knowledge of linux privilege escalation
  ☆11Oct 14, 2023Updated 2 years ago
• som3canadian / Cloudflare-Redirector

  View on GitHub
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆188Mar 14, 2025Updated last year
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• WKL-Sec / FuncAddressPro

  View on GitHub
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Mar 6, 2024Updated 2 years ago
• superhac / OSEP

  View on GitHub
  ☆21Dec 1, 2021Updated 4 years ago
• nop-tech / OSED

  View on GitHub
  Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)
  ☆802Aug 18, 2024Updated last year
• C0axx / Modified-Thycotic-Secret-Stealer

  View on GitHub
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Aug 5, 2022Updated 3 years ago
• szymex73 / ADFSpoof

  View on GitHub
  ☆11Feb 7, 2023Updated 3 years ago
• xct / hashgrab

  View on GitHub
  generate payloads that force authentication against an attacker machine
  ☆120Nov 6, 2022Updated 3 years ago
• mandiant / ccmpwn

  View on GitHub
  ☆221Mar 26, 2024Updated 2 years ago