There are 129 repositories under exploitation topic.
Automatic SQL injection and database takeover tool
A collection of hacking tools, resources and references to practice ethical hacking.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Automated Mass Exploiter
Automated All-in-One OS Command Injection Exploitation Tool.
Automation for internal Windows Penetrationtest / AD-Security
File upload vulnerability scanner and exploitation tool.
Automatic SSRF fuzzer and exploitation tool
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
Offensive Software Exploitation Course
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
The Offensive Manual Web Application Penetration Testing Framework.
iOS/macOS/Linux Remote Administration Tool
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Awesome tools to exploit Windows !
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Advanced dork Search & Mass Exploit Scanner
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
How to exploit a double free vulnerability in 2021. Use After Free for Dummies
Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read
An XSS exploitation command-line interface and payload generator.
An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
AndroRAT | Remote Administrator Tool for Android OS Hacking
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user