exploits

There are 139 repositories under exploits topic.

• h4cker

  The-Art-of-Hacking / h4cker

  This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

  aiai-securityartificial-intelligenceawesome-listawesome-listscybersecurityethical-hackingexploitexploit-developmentexploitshackerhackershackinghacking-seriespenetration-testingtrainingvulnerabilityvulnerability-assessmentvulnerability-identificationvulnerability-management
  Language:Jupyter Notebook 18814

• threat9 / routersploit

  Exploitation Framework for Embedded Devices

  bruteforcecredsdictionary-attackembeddedexploitsinfosecpythonrouterrouter-exploitation-frameworkroutersploitroutersploit-frameworkscannersecurity
  Language:Python 12183

• projectdiscovery / nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  bugbountyexploit-developmentexploitsfingerprinthacktoberfestnucleinuclei-checksnuclei-templatessecurityvulnerability-detection
  Language:JavaScript 9252

• The-Z-Labs / linux-exploit-suggester

  Linux privilege escalation auditing tool

  applicable-exploitsexploitshacking-toolkernel-exploitationlinux-exploitslinux-kernelprivilege-escalation-exploitspublished-exploitssecurity-tools
  Language:Shell 5626

• x0rz / EQGRP

  Decrypted content of eqgrp-auction-file.tar.xz

  equationgroupexploitshackingnsashadowbrokerstao
  Language:Perl 4102

• cdk-team / CDK

  📦 Make security testing of K8s, Docker, and Containerd easier.

  blackhatcloud-nativecloud-native-securitycontainercontainer-escapecontainer-securitydockerexploitshacktoolshitbk8sk8s-penetration-toolkitkernel-exploitationkuberneteskubernetes-securitylinuxpenetrationpenetration-testing-toolsprivilege-escalationvulnerabilities
  Language:Go 3898

• ysrc / xunfeng

  巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

  exploitsinfosecpentestingscannersecuritysecurity-auditvulnerability-assessmentvulnerability-detectionvulnerability-scanners
  Language:Python 3544

• Ascotbe / Kernelhub

  :palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

  cvecve-2021-26868cve-2021-33739cve-2021-34486cve-2021-36934cve-2021-40444cve-2021-40449cve-2021-42278cve-2021-42287cve-2022-21882cve-2022-26937cve-2022-30206cve-2022-33679cve-2022-34718exploitskernellinuxpentesttoolwindows
  Language:C 2924

• the-akira / Computer-Science-Resources

  A list of resources in different fields of Computer Science

  artificial-intelligenceassemblyawesome-listcloud-computingcomputercomputervisioncryptographycybersecuritydatabaseexploitsjavascriptmachine-learningmathematicsnetworkingoperating-systemphysicsprogramming-languagepythonquantum-computingregular-expression
  2471
• SUDO_KILLER

  TH3xACE / SUDO_KILLER

  A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

  abuse-sudoctfcveexploitslinux-exploitsmisconfigurationoscposcp-journeyoscp-preposcp-toolspentestpentest-toolprivilege-escalationsudosudo-exploitation
  Language:Shell 2231

• anouarbensaad / vulnx

  vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.

  crawlerinformation-gatheringcms-detectorcloudflare-detectionbotpentestwp-scannerauto-exploitervulnerabilityhackingwebsite-vulnerability-scannersecurity-toolsvulnerability-assessmentvulnerability-exploitvulnerability-detectionshell-injectiondetects-vulnerabilitiesexploitsdorkssubdomains-gathering
  Language:Python 1891

• 1N3 / Findsploit

  Find exploits in local and online databases instantly

  bugbountyexploitdbexploitsfindhackersmetasploitnmappentestsearch
  Language:Shell 1632

• AabyssZG / SpringBoot-Scan

  针对SpringBoot的开源渗透框架，以及Spring相关高危漏洞利用工具

  cve-2018-1273cve-2021-21234cve-2022-22947cve-2022-22963cve-2022-22965exploitexploitssecuritysecurity-toolsspringspring-bootspring-vulnerabilityspringbootvul
  Language:Python 1621

• XiphosResearch / exploits

  Miscellaneous exploit code

  bypassexploitshackingphppocpythonrcesecuritytr-064windows
  Language:Python 1517
• openclarity

  openclarity / openclarity

  OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure

  cloudexploitskubernetesleaked-secretsmalwarerootkitssbomscannersecuritysupply-chainvirtual-machinevulnerabilities
  Language:Go 1344
• deepce

  stealthcopter / deepce

  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

  container-escapedeepcedocker-enumerationenumerationexploitsprivilege-escalationprivilege-escalation-exploits
  Language:Shell 1197

• jxy-s / herpaderping

  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

  exploitwindowssecurityprocess-herpaderpingvulnerabilitysecurity-vulnerabilityexploitationexploitsexploit-developmentexploit-frameworkwindows-10windows-7windows-defenderantivirusantivirus-evasionprocess-migrationprocess-hollowingprocess-doppelganging
  Language:C++ 1091

• nccgroup / featherduster

  An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction

  cryptanalysiscryptocryptographyencryptionexploitexploitationexploitation-frameworkexploitspythonsecurity
  Language:Python 1090

• dark-lbp / isf

  ISF(Industrial Control System Exploitation Framework)，a exploitation framework based on Python

  icsics-expics-pocscapyisfmodbusexploitsscadaplc
  Language:Python 1031

• rastating / wordpress-exploit-framework

  A Ruby framework designed to aid in the penetration testing of WordPress systems.

  exploitssecuritysecurity-auditwordpresswordpress-exploit-framework
  Language:Ruby 1018

• rfunix / Pompem

  Find exploit tool

  exploit-databaseexploitspentest-toolpythonsecurity-tools
  Language:Python 980

• 1N3 / PrivEsc

  A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

  bugbountyexploitshackinglinuxmysqlpentestingprivescsqlwindows
  Language:C 957

• toolswatch / vFeed

  The Correlated CVE Vulnerability And Threat Intelligence Database API

  capeccommon-vulnerability-exposurecvecweexploitsintelligence-gatheringovalpythonscapthreatthreat-intelligencethreat-intelligence-databasethreatintelvfeedvulnerabilityvulnerability-database-entryvulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scanners
  Language:Python 932

• topscoder / nuclei-wordfence-cve

  The EXCLUSIVE Collection of 40,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.

  bugbountycveexploitsnucleinuclei-templatespentestingprojectdiscoveryscannersecurityvulnerabilityvulnerability-scanningwordfencewordpress
  Language:Python 920

• tenable / routeros

  RouterOS Security Research Tooling and Proof of Concepts

  bughuntingexploitshoneypotpocrouterosscanner
  Language:C++ 863

• pedrib / PoC

  Advisories, proof of concept files and exploits that have been made public by @pedrib.

  advisoriesexploitshackingmetasploitvulnerabilities
  Language:Ruby 817

• sundaysec / Android-Exploits

  A collection of android Exploits and Hacks

  androidandroid-architecturedosexploitexploitshacking
  Language:HTML 787

• googleprojectzero / 0days-in-the-wild

  Repository for information about 0-days exploited in-the-wild.

  0dayexploitsvulnerabilities
  Language:HTML 759

• StarCrossPortal / scalpel

  scalpel是一款命令行漏洞扫描工具，支持深度参数注入，拥有一个强大的数据解析和变异算法，可以将常见的数据格式（json, xml, form等）解析为树结构，然后根据poc中的规则，对树进行变异，包括对叶子节点和树结构 的变异。变异完成之后，将树结构还原为原始的数据格式。

  cveexploitsfuzzingpocscannervulnerabilitiesvulnerability
  735
• HiveNightmare

  GossiTheDog / HiveNightmare

  Exploit allowing you to read registry hives as non-admin on Windows 10 and 11

  cybersecurityexploitssecurity
  Language:C++ 713

• hackerschoice / THC-Archive

  All releases of the security research group (a.k.a. hackers) The Hacker's Choice

  exploitexploitshackhacker-choicehackinghacking-toolhacking-toolshackshpahpavipv6magazinepenetration-testingpentestpentest-toolpentestingpentesting-networksphreakingthcthc-hydra
  Language:HTML 688

• spencerdodd / kernelpop

  kernel privilege escalation enumeration and exploitation framework

  enumerationexploitskernelsecuritytoolsvulnerabilities
  Language:Python 687

• adysec / nuclei_poc

  Nuclei POC，每日更新 | 自动整合全网Nuclei的漏洞POC，实时同步更新最新POC，保存已被删除的POC。通过批量克隆Github项目，获取Nuclei POC，并将POC按类别分类存放，使用Github Action实现（已有11wPOC，已校验有效性并去重）

  dailyexploitexploitsfingerprinthack-toolshackerhackingnucleinuclei-templatespocscannersecuritysecurity-scannervulnerability-detection
  Language:Python 639
• mec

  jm33-m0 / mec

  for mass exploiting

  adapted-exploitsbaidu-searchcensysexploitsgoogle-searchhacking-toollinuxmasscanmecparallelizationprompt-toolkitpythonrcessh-bruteforceweblogiczoomeye
  Language:Python 600

• smallcham / sec-admin

  分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

  exploitsinfosecpythonscannersecuritysecurity-auditvulnerability-scanners
  Language:Python 600

• 0xdea / exploits

  A handy collection of my public exploits, all in one place.

  aixbuffer-overflowexploitslinuxmysqlopenbsdoraclesolariszyxel
  Language:C 596