Proof-of-Concept exploit for CVE-2026-23918 (Apache mod_http2 double-free). Features multi-mode DoS (Rapid-RST, Slow-Drip) and passive RCE/vulnerability detection for Apache 2.4.66.
☆22May 6, 2026Updated 2 months ago
Alternatives and similar repositories for CVE-2026-23918-Apache-H2-PoC
Users that are interested in CVE-2026-23918-Apache-H2-PoC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆10Dec 28, 2024Updated last year
- AI-powered malware traffic analysis and network forensics via the Model Context Protocol☆18May 27, 2026Updated last month
- Modified version of PEAS client for offensive operations☆51May 18, 2026Updated last month
- Modern, cross-platform netcat alternative written in Go with enhanced features for network communication, debugging, and security testing…☆30May 1, 2026Updated 2 months ago
- Fortinet FortiClientEMS improper access control☆35Apr 20, 2026Updated 2 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A Windows tool that converts LDIF files to BloodHound CE☆30Dec 20, 2025Updated 6 months ago
- A Roku streaming device controller for the browser using a Go server to host the static content and run a proxy to get around the restric…☆10May 5, 2020Updated 6 years ago
- ☆16May 1, 2024Updated 2 years ago
- Windfall - Unauthenticated RCE exploit chain for Windmill & Nextcloud Flow (CVE-2026-29059). Path traversal + credential leak + PostgreSQ…☆17Apr 7, 2026Updated 3 months ago
- The PoC for CVE-2025-70795 / CVE-2026-0828 and updated driver☆49Mar 13, 2026Updated 4 months ago
- PoC for CVE-2026-48907 - Joomla! JCE extension < 2.9.99.5 unauthenticated RCE☆15Jun 11, 2026Updated last month
- 🔵 A simple blockchain will be simulated with the Go language☆11Apr 13, 2025Updated last year
- CVE-2026-45250 - FreeBSD 14.x LPE☆22May 21, 2026Updated last month
- Subtitle Editor for creating/fixing/exporting subtitles☆15Jun 1, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Smuggling C2 comms through links previews☆18Jun 17, 2026Updated 3 weeks ago
- Havoc BOF implementation of BYOVD attack to terminate PPL-protected EDR processes using a signed Microsoft kernel driver.☆39Apr 6, 2026Updated 3 months ago
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- English conversion for Samba de Amigo Ver. 2000☆11Apr 11, 2026Updated 3 months ago
- ☆79Jan 1, 2026Updated 6 months ago
- A Python tool to resolve domains to IPs, fetch related CVEs, and display open ports☆17Nov 21, 2025Updated 7 months ago
- Cortex C2 is a Open source Linux C2 inspired by the void link C2 framework☆43May 29, 2026Updated last month
- shellcode transformation tool for YARA evasion☆61Dec 17, 2025Updated 6 months ago
- Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques☆130Dec 28, 2025Updated 6 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- AI EDR for developer workstations and autonomous agent fleets. Build Swarm Detection & Response platforms with Clawdstrike.☆283Updated this week
- ☆60Dec 10, 2025Updated 7 months ago
- Impacket☆50Feb 25, 2026Updated 4 months ago
- Rust-based Windows kernel driver research project with a companion user-mode client for IOCTL-based experiments with process, token, PPL,…☆18Apr 30, 2026Updated 2 months ago
- ☆49Nov 26, 2025Updated 7 months ago
- Securely encrypt and decrypt your files directly in your browser.☆94Jun 23, 2026Updated 3 weeks ago
- A simple HAR-based JavaScript recon automation kit for organizing JS files, endpoints, secrets, and gf-filtered attack surface during bug…☆16May 20, 2026Updated last month
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- AI-Powered Web Attack Surface Enumeration☆43Feb 5, 2026Updated 5 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- POCs to demonstrate CVE-2026-42167 in ProFTPD☆23Apr 29, 2026Updated 2 months ago
- Double-free in Apache httpd mod_http2 stream cleanup leading to pre-auth RCE.☆31May 11, 2026Updated 2 months ago
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated 2 months ago
- ☆25Sep 6, 2025Updated 10 months ago
- A newly discovered vulnerable driver, pstrip64.sys (CVE-2026-29923) allows an unprivileged user to escalate privileges to SYSTEM via a cr…☆25Apr 11, 2026Updated 3 months ago
- LID — Linux Integrity Drift: Bypassing AppArmor via eBPF pathname rewriting. Pre-LSM syscall argument manipulation with zero audit footpr…☆19May 25, 2026Updated last month
- ☆21May 7, 2026Updated 2 months ago