yaxuan404

PoC

PoC of CVE/Exploit

CVE-2018-17182

Linux 内核VMA-UAF 提权漏洞（CVE-2018-17182）,0day

NetUser

使用windows　api添加用户，可用于net无法使用时

windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

automated-subdomain-takeover

CDK

CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.

ChatGPTScanner

A white box code scan powered by ChatGPT

CVE

A collection of proof-of-concept exploit scripts written by the STAR Labs team for various CVEs that they discovered or found by others.

CVE-2018-1305

Apache Tomcat 安全绕过漏洞 Poc

DVWA

Damn Vulnerable Web Application (DVWA)

EngineCrawler

国内外主流搜索引擎爬虫

everydaylearn

i`m a cat ~ find fish

exp_notes

some exp for pentest

Fuxi-Scanner

Network Security Vulnerability Scanner

metasploit-framework

Metasploit Framework

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

OTCMS_3.2

passive-scan-client

Burp被动扫描流量转发插件

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

POC-EXP

收集或编写各种漏洞PoC、ExP

PrintDemon

PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.

Python_less

rules

通用的指纹识别规则

Scanners-Box

The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑

sqlmap

Automatic SQL injection and database takeover tool

test111

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

wappalyzer

Identify technology on websites.

xxe_poc

一个简单的 xxe 内网主机扫描、端口扫描小脚本