exploitation

There are 149 repositories under exploitation topic.

sqlmapproject / sqlmap
Automatic SQL injection and database takeover tool
database detection exploitation pentesting python sql-injection sqlmap takeover vulnerability-scanner
Language:Python 35717
sundowndev / hacker-roadmap
A collection of hacking tools, resources and references to practice ethical hacking.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation information-gathering pentesting security
14752
Manisso / fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
brute-force-attacks desktop exploitation finder fsociety fsociety-hacking information-gathering network penetration-testing-framework port-scanning post-exploitation python web-hacking
Language:Python 11631
S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
active-directory active-directory-cheatsheet active-directory-exploitation activedirectory attack cheat cheat-sheet cheatsheet enumeration exploitation hacking hacking-cheasheet hacking-tool hacking-tools penetration-testing pentesting privilege-escalation security windows windows-active-directory
6366
RPISEC / MBE
Course materials for Modern Binary Exploitation by RPISEC
ctf exploitation wargame
Language:C 5870
commix
commixproject / commix
Automated All-in-One OS Command Injection Exploitation Tool.
python command-injection detection exploitation pentesting vulnerability-scanner bugbounty takeover commix open-source
Language:Python 5510
NullArray / AutoSploit
Automated Mass Exploiter
metasploit python exploit exploitation offsec automation security-tools security
Language:Python 5166
S3cur3Th1sSh1t / WinPwn
Automation for internal Windows Penetrationtest / AD-Security
pentesting automation adsecurity privilege-escalation powersploit pentest-tool exploitation recon redteam powershell
Language:PowerShell 3588
swisskyrepo / SSRFmap
Automatic SSRF fuzzer and exploitation tool
ctf exploitation hacktoberfest pentest server-side-request-forgery ssrf ssrfmap vulnerability
Language:Python 3392
collisions
corkami / collisions
Hash collisions and exploitations
collisions hash md5 sha1 exploitation scripts
Language:Python 3289
almandin / fuxploider
File upload vulnerability scanner and exploitation tool.
detection exploitation pentesting python3 takeover vulnerability-scanner
Language:Python 3279
rizin
rizinorg / rizin
UNIX-like reverse engineering framework and command-line toolset.
reverse-engineering program-analysis security exploitation debugging
Language:C 3161
hacksysteam / HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
buffer-overflow driver exploit-development exploitation hevd info-leak kernel linux memory-corruption type-confusion uaf vulnerabilities windows
Language:C 2852
0xor0ne / awesome-list
Cybersecurity oriented awesome list
awesome awesome-list cybersecurity exploitation reverse-engineering
2683
Integration-IT / Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
active-directory active-directory-cheatsheet active-directory-exploitation penetration-testing hacking hacking-cheasheet windows-active-directory cheatsheet powershell hacking-tools exploitation privilege-escalation enumeration hacking-tool security pentesting infosec windows cheat-sheet
Language:PowerShell 2649
ashemery / exploitation-course
Offensive Software Exploitation Course
exploitdev exploitation-course exploitation ose offensive
Language:Python 2391
MegaManSec / SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
bash exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation security security-tools ssh vulnerability-scanner worm cybersecurity redteam scanner shell ssh-hacking
Language:Shell 2284
lefayjey / linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
active-directory adcs adsecurity bloodhound enumeration exploitation hacking impacket kerberoast kerberos mssql penetration-testing pentest pentest-tool pentesting
Language:Shell 2106
sashs / Ropper
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper uses the awesome Capstone Framework.
rop exploitation binary gadget-finder gadgets rop-chains
Language:Python 2061
Xyntax / POC-T
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
pentesting vulnerability-scanner exploitation
Language:Python 1954
0xInfection / TIDoS-Framework
The Offensive Manual Web Application Penetration Testing Framework.
enumeration exploitation footprinting intelligence-gathering osint reconnaissance scanning-enumeration tidos-framework vulnerability-analysis vulnerability-detection web-application-security web-fuzzer web-penetration-testing
Language:Python 1842
lucasjacks0n / EggShell
iOS/macOS/Linux Remote Administration Tool
ios macos pentest-tool pentest-scripts information-security metasploit exploitation remote-admin-tool meterpreter reverse-shell jailbreak
Language:Objective-C 1726
Hack-with-Github / Windows
Awesome tools to exploit Windows !
powershell exploitation powershell-script windows-machine exploiting-windows windows-hacking post-exploitation-powershell powershell-payload
1699
XAttacker
Moham3dRiahi / XAttacker
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
vulnerability-scanner vulnerability-detection vulnerability-exploit vulnerability-assessment security-scanner scanner security-tools website-vulnerability-scanner hacking hacking-tool pentest wp-scanner wordpress prestashop joomla lokomedia drupal auto-exploiter exploit exploitation
Language:Perl 1667
Damn-Vulnerable-GraphQL-Application
dolevf / Damn-Vulnerable-GraphQL-Application
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
vulnerability graphql security penetration-testing damn-vulnerable damn-vulnerable-web-application graphql-security exploitation
Language:JavaScript 1650
WADComs / WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
exploitation windows redteam blueteam wadcoms cheatsheet commands enumeration persistence privilege-escalation
Language:HTML 1611
AlisamTechnology / ATSCAN
Advanced dork Search & Mass Exploit Scanner
data dork engine exploitation lfi linux mass-exploitation-scanner ports portscan rfi scanner security server shell sqli system tools vulnerability-scanners web-application xss
Language:Perl 1511
The404Hacking / AndroRAT
AndroRAT | Remote Administrator Tool for Android OS Hacking
the404hacking rat remote administrator android androrat exploit exploitation remote-administrator-tool android-application plateform phone
Language:Java 1501
mufeedvh / moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
security security-tools redteam red-teaming redteam-tools infosec infosectools linux exploit exploitation cve privilege-escalation
Language:Rust 1468
arch3rPro / PentestTools
Awesome Pentest Tools Collection
pentest-tool vulnerability-scanners exploitation command-injection penetration-testing
1439
toxssin
t3l3machus / toxssin
An XSS exploitation command-line interface and payload generator.
cross-site-scripting exploitation javascript penetration-testing pentesting-tools python web-penetration-testing xss-exploitation xss-vulnerability hacking xss
Language:Python 1399
stong / how-to-exploit-a-double-free
How to exploit a double free vulnerability in 2021. Use After Free for Dummies
binary ctf double-free exploitation heap lock-free microarchitecture pwn tutorial use-after-free walkthrough
Language:Python 1370
BinExp
rosehgal / BinExp
Linux Binary Exploitation
linux binaries exploitation stackoverflow tutorial consolidation bufferoverflow buffer-overflow-attack format-string-attack vulnerabilities shellcode-injector return-to-libc ret2libc global-offset-table overriding-got got-spawning-shell heap-exploitation
Language:C 1347
0xricksanchez / paper_collection
Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read
fuzzing paper exploitation linux kernel mitigations iot embedded linux-kernel sanitizer vulnerability-detection fuzzing-binaries guided-fuzzing directed-fuzzing hybrid-fuzzing rca root-cause
Language:Python 1339
ViRb3 / magisk-frida
🔐 Run frida-server on boot with Magisk, always up-to-date
magisk frida reverse-engineering android security exploitation root
Language:Shell 1240
jxy-s / herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
exploit windows security process-herpaderping vulnerability security-vulnerability exploitation exploits exploit-development exploit-framework windows-10 windows-7 windows-defender antivirus antivirus-evasion process-migration process-hollowing process-doppelganging
Language:C++ 1167