xct/vulnbins external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xct/vulnbins

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xct/vulnbins)

Close

xct / vulnbinsView on GitHubMore

• External links
• Readme badge

vulnerable windows binaries for exploitation practice

☆46Jun 6, 2022Updated 3 years ago

Alternatives and similar repositories for vulnbins

Users that are interested in vulnbins are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Sh3lldon / RemoteApp

  View on GitHub
  I have created these custom servers for preparing EXP-301 course (aka WUMED) exam and hope it will help to take OSED certification. Feel …
  ☆50Nov 15, 2023Updated 2 years ago
• xct / SeDebugAbuse

  View on GitHub
  Get SYSTEM via SeDebugPrivilege
  ☆24Jun 6, 2022Updated 3 years ago
• bmdyy / signatus

  View on GitHub
  Signatus - A Vulnerable TCP server to practice Win32 exploitation
  ☆51Jun 13, 2021Updated 4 years ago
• xct / rcat

  View on GitHub
  rcat
  ☆75Mar 7, 2022Updated 4 years ago
• bmdyy / quote_db

  View on GitHub
  QuoteDB - A Vulnerable TCP Server to practice Win32 exploitation
  ☆78Dec 21, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• cvencoder / cve-2019-0708

  View on GitHub
  POC CVE-2019-0708 with python script!
  ☆14Jun 24, 2019Updated 6 years ago
• dest-3 / OSED_Resources

  View on GitHub
  A curated list of resources for the OSED journey.
  ☆72Feb 3, 2022Updated 4 years ago
• ommadawn46 / win-x86-shellcoder

  View on GitHub
  A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
  ☆74Jul 29, 2022Updated 3 years ago
• epi052 / osed-scripts

  View on GitHub
  bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
  ☆609Jul 15, 2024Updated last year
• bmdyy / testr

  View on GitHub
  TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection
  ☆43Oct 8, 2022Updated 3 years ago
• Wh04m1001 / MSIExecEoP

  View on GitHub
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆30Nov 6, 2022Updated 3 years ago
• xct / SeManageVolumeAbuse

  View on GitHub
  SeManageVolumePrivilege to SYSTEM
  ☆150Nov 22, 2023Updated 2 years ago
• slemire / bof-adopt

  View on GitHub
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆17Jul 22, 2022Updated 3 years ago
• jayesther / OSEP_OSED_TOOLS

  View on GitHub
  Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course
  ☆28Mar 13, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• xct / winpspy

  View on GitHub
  CLI monitor for windows process- & file activity
  ☆97Nov 20, 2020Updated 5 years ago
• bmdyy / chat.js

  View on GitHub
  Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation
  ☆32Mar 21, 2021Updated 5 years ago
• patrickhener / invictus

  View on GitHub
  OSED Practice binary
  ☆26Nov 23, 2023Updated 2 years ago
• ToBeatElite / InfoSecNotes

  View on GitHub
  ☆12Aug 1, 2023Updated 2 years ago
• szymex73 / bloodhound-convert

  View on GitHub
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆64Jun 30, 2022Updated 3 years ago
• Darksidesfear / OSED-CheatSheet

  View on GitHub
  Exploit Development CheatSheet.
  ☆18Aug 9, 2021Updated 4 years ago
• bmdyy / osed_prep

  View on GitHub
  A collection of Windows x32 exploits created while preparing for the OSED certification exam
  ☆25Jun 29, 2021Updated 4 years ago
• bmdyy / order

  View on GitHub
  ORDER - A small Python web-app to practice blind SQLi in order by
  ☆22Mar 21, 2021Updated 5 years ago
• xct / SeRestoreAbuse

  View on GitHub
  SeRestorePrivilege to SYSTEM
  ☆136Oct 8, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• r0r0x-xx / OSED-Pre

  View on GitHub
  ☆198Feb 14, 2024Updated 2 years ago
• purpl3f0xsecur1ty / OSCE-prep

  View on GitHub
  Exploits made practicing for OSCE
  ☆23Dec 3, 2020Updated 5 years ago
• kyle41111 / RedTeamHelp

  View on GitHub
  Tools I use on red team engagements and more
  ☆35Mar 14, 2024Updated 2 years ago
• lum8rjack / caddy-c2

  View on GitHub
  Caddy v2 module to filter requests based on C2 profiles
  ☆46Apr 24, 2025Updated last year
• ApexPredator-InfoSec / WUMED-OSED

  View on GitHub
  Notes template for Offensive Security's EXP-301 course and OSED exam
  ☆20Mar 4, 2022Updated 4 years ago
• Ap3x / COFF-Loader

  View on GitHub
  A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader
  ☆71Mar 6, 2026Updated 2 months ago
• som3canadian / Cloudflare-Redirector

  View on GitHub
  Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.
  ☆189Mar 14, 2025Updated last year
• superhac / OSEP

  View on GitHub
  ☆21Dec 1, 2021Updated 4 years ago
• nop-tech / OSED

  View on GitHub
  Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)
  ☆806Aug 18, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• WKL-Sec / FuncAddressPro

  View on GitHub
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Mar 6, 2024Updated 2 years ago
• C0axx / Modified-Thycotic-Secret-Stealer

  View on GitHub
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Aug 5, 2022Updated 3 years ago
• szymex73 / ADFSpoof

  View on GitHub
  ☆12Feb 7, 2023Updated 3 years ago
• xct / hashgrab

  View on GitHub
  generate payloads that force authentication against an attacker machine
  ☆120Nov 6, 2022Updated 3 years ago
• mandiant / ccmpwn

  View on GitHub
  ☆221Mar 26, 2024Updated 2 years ago
• secure-77 / Certipy-Docker

  View on GitHub
  Certipy in Docker
  ☆13Mar 28, 2024Updated 2 years ago
• blacklanternsecurity / bbot-server

  View on GitHub
  A persistent database + CLI for your BBOT scan data 🧡
  ☆44Updated this week