exploit

There are 346 repositories under exploit topic.

h4cker
The-Art-of-Hacking / h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
ai ai-security artificial-intelligence awesome-list awesome-lists cybersecurity ethical-hacking exploit exploit-development exploits hacker hackers hacking hacking-series penetration-testing training vulnerability vulnerability-assessment vulnerability-identification vulnerability-management
Language:Jupyter Notebook 23947
vitalysim / Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
ctf hacking privilege-escalation reverse-engineering buffer-overflow penetration-testing owasp exploit malware windows-privilege-escalation privilege-escalation-linux mitm
16445
Gallopsled / pwntools
CTF framework and exploit development library
ctf exploit python pwntools assembly ctf-framework shellcode rop pwnable defcon capture-the-flag wargame python2 python3 linux bsd shellcoding shellcode-development hacktoberfest
Language:Python 13020
edoardottt / awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
awesome awesome-list awesome-lists bugbounty cve dns exploit hacking hacking-tools hacktoberfest osint osint-tool redteam redteaming search-engine security security-tools threat-intelligence vulnerabilities wifi-network
Language:Shell 9699
BlackFriday-GPTs-Prompts
friuns2 / BlackFriday-GPTs-Prompts
List of free GPTs that doesn't require plus subscription
ai awesome awesome-list gpt agents anthropic artifacts chatbot chatgpt openai agi bots gemini jailbreak hack prompts spam claude exploit google
8750
ysoserial
frohoff / ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
deserialization exploit gadget java javadeser jvm poc serialization vulnerability
Language:Java 8576
SecWiki / windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
collections exploit kernel pentest tool windows
Language:C 8494
gef
hugsy / gef
GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
binary-ninja ctf debugging discord exploit exploit-development gdb gef ida-pro linux malware-analysis mips powerpc pwn pwntools python python-api reverse-engineering sparc
Language:Python 7847
nomi-sec / PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
security cve exploit poc vulnerability
7367
trickest / cve
Gather and update all available and newest CVEs with their PoC.
poc cve cve-poc latest-cve vulnerability vulnerabilities software-vulnerabilities software-security exploit security infosec hacking pentesting penetration-testing red-team security-tools software-vulnerability
Language:HTML 7328
Mr-xn / Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
authentication-bypass bypass cobalt-strike csrf csrf-webshell cve cve-cms exploit getshell oa-getshell penetration-testing penetration-testing-poc php-bypass poc poc-exp rce sql-getshell sql-poc thinkphp
Language:HTML 7113
traitor
liamg / traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
gtfobins exploit privesc privilege-escalation hackthebox infosec redteam-tools security-tools cve-2021-3560 dirtypipe cve-2022-0847
Language:Go 7028
yaklang / yakit
Cyber Security ALL-IN-ONE Platform
blueteam burpsuite exploit golang hacking hacking-tools pentest redteam redteam-tools scanner security
Language:TypeScript 6876
ihebski / DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️
blueteam blueteam-tools blueteaming bugbounty cheatsheet cybersecurity default-password exploit infosec offensive-security offensive-security-projects pentest pentesting soc
Language:Python 6287
xairy / linux-kernel-exploitation
A collection of links related to Linux kernel security and exploitation
linux-kernel kernel-exploitation exploit privilege-escalation security
6198
K8tools
k8gege / K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
exploit 0day poc getshell pentest hacking scanner privilege-escalation bypass crack netscan brute-force password database exp lpe rce
Language:PowerShell 6099
SecWiki / linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
awesome collection exploit kernel linux pentest tool
Language:C 5518
AzeemIdrisi / PhoneSploit-Pro
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
adb android android-debug-bridge android-hacking collaborate cybersecurity exploit hack hacking hacking-script hacking-tool hacktoberfest metasploit-framework meterpreter penetration-testing pentest-tool pentesting phonesploit phonesploit-pro python
Language:Python 5424
Ladon
k8gege / Ladon
Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)或方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等，大量高危漏洞检测模块MS17010、Zimbra、Exchange
scanner portscan pentest hacking security security-tools security-scanner poc getshell brute-force password netscan tools hack exp ladon ipscanner exploit
Language:C# 5207
NullArray / AutoSploit
Automated Mass Exploiter
metasploit python exploit exploitation offsec automation security-tools security
Language:Python 5166
bitsadmin / wesng
Windows Exploit Suggester - Next Generation
exploit microsoft patches suggester updates windows
Language:Python 4675
firmianay / CTF-All-In-One
CTF竞赛权威指南
ctf security pwn reverse-engineering web misc crypto exploit book hacking
Language:C 4404
karma9874 / AndroRAT
A Simple android remote administration tool using sockets. It uses java on the client side and python on the server side
android backdoor python reverse-shell sockets interpreter androrat rat android-application exploit interpreter-commands java apk hacktoberfest android-rat
Language:Java 4273
zhzyker / exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
cve-2020-10199 cve-2020-10204 cve-2020-11444 cve-2020-14882 cve-2020-1938 cve-2020-2551 cve-2020-2555 cve-2020-2883 cve-2020-5902 drupal exp exploit getshell nexus poc tomcat vulnerability weblogic webshell
Language:Python 4260
lcvvvv / kscan
Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。
brute-force bruteforce exploit fingerprint pentest red-team redteam scanner security webscan
Language:Go 4211
isec-tugraz / meltdown
This repository contains several applications, demonstrating the Meltdown bug.
exploit proof-of-concept side-channel
Language:C 4156
Threekiii / Awesome-Redteam
一个攻防知识库。A knowledge base for red teaming and offensive security.
command-and-control execution exploit initial-access lateral-movement privilege-escalation reconnaissance red-teaming
Language:Python 3988
scipag / vulscan
Advanced vulnerability scanning with Nmap NSE
vulnerability vulnerability-scanners vulnerability-detection vulnerability-identification vulnerability-assessment security security-audit security-scanner penetration-testing nmap nmap-scripts exploit vulnerability-scanning vulnerability-databases vulnerability-database-entry nmap-scan-script nse nsescript lua lua-script
Language:Lua 3688
zhzyker / vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
exploit cve rce vulnerabilities cve-2016-4437 security security-tools pentesting pentest-tool cve-2020-14882 cve-2020-2555 cve-2020-2883 scanner cve-2020-13942 cve-2020-17518 cve-2021-21972 cve-2021-26855 cve-2021-27065 cve-2021-21975 cve-2021-3129
Language:Python 3502
Ghost
EntySec / Ghost
Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
adb android-device android android-debug-bridge android-exploit post-exploitation exploit exploitation-framework android-hack android-hacking android-rat rat remote-access kali-linux hack hacking hacking-tools remote-shell backdoor entysec
Language:Python 3200
mgeeky / Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
penetration-testing penetration testing tools scripts cheatsheets exploit social-engineering networks red-teaming hacking pentesting redteam security
Language:PowerShell 2829
blackorbird / APT_REPORT
Interesting APT Report Collection And Some Special IOCs
apt cybersecurity malware security threat-hunting exploit oisint
Language:Python 2702
joaomatosf / jexboss
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
exploit exploiting-vulnerabilities deserialization javadeser gadget reverse-shell
Language:Python 2482
Notselwyn / CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
cve exploit lpe poc cve-2024-1086
Language:C 2412
RootMyTV.github.io
RootMyTV / RootMyTV.github.io
RootMyTV is a user-friendly exploit for rooting/jailbreaking LG webOS smart TVs.
tv webos exploit cve-2022-23727 cve-2020-9759
Language:HTML 2386
david942j / one_gadget
The best tool for finding one gadget RCE in libc.so.6
ctf pwnable pwn glibc one-gadget-rce shell exploit gadget libc
Language:Ruby 2249

Related Topics

cybersecurity hacking penetration-testing vulnerability-assessment