frankenstein

This is a Python-based framework called Frankenstein, designed to provide a virtual environment for fuzzing wireless firmwares. The framework is currently optimized for the CYW20735 Bluetooth evaluation board but also supports the CYW20819A1 evaluation board. The framework allows users to attach ...

Exploit for CVE-2022-21907

CVE-2022-21907 使用说明 git clone https://gitee.com/lutixiaya/cve-2022-21907.git pip install -r requirements.txt 修改py脚本中的ip地址 python CVE-2022-21907.py...

vulhub

This is an offensive tool repository for testing and demonstrating vulnerabilities in various software and systems. The repository is maintained by Vulhub, a community-driven project that aims to provide a comprehensive collection of vulnerable environments for testing and learning purposes. The...

Exploit for Server-Side Request Forgery in Grafana

This is a PoC Proof of Concept repository for various web vulnerabilities, specifically SQL injection and SSRF Server-Side Request Forgery vulnerabilities. The repository contains a list of vulnerabilities, including: CVE-2021-21315: Node.js command injection vulnerability CVE-2020-13379: Grafana...

vulhub

This is an open-source collection of vulnerable web applications and environments for testing and learning purposes. It is a repository of vulnerable systems, including web applications, databases, and networks, that can be used to test and demonstrate various types of cyber attacks and...

vulhub

This repository is an open-source collection of vulnerable web applications and environments for security research and training. It is maintained by phith0n and hosted on GitHub. The repository contains a variety of vulnerable applications, including web servers, databases, and other systems, to...

vulhub

This is an open-source vulnerability training platform. It is a collection of vulnerable environments for training and testing purposes, allowing users to practice their penetration testing and vulnerability assessment skills in a safe and controlled environment. The platform is maintained by the...

vulhub

This repository is an offensive tool for web application security training and testing. It is a collection of vulnerable web applications and tools for testing and training purposes. The repository contains a variety of vulnerable applications, including web servers, databases, and other web-base...

exploitdb

The Exploit Database Git Repository This is an official repository of The Exploit Database, a project sponsored by Offensive Security. Our repositories are: - Exploits & Shellcodes: https://github.com/offensive-security/exploitdb - Binary Exploits:...

Exploit for Code Injection in Vmware Spring_Framework

漏洞简介 最近spring爆出重磅级CVE漏洞，cve信息显示"A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution RCE via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot...

nuclei-templates

This repository is an offensive tool for nuclei templates. It is a community-driven collection of templates for the nuclei engine to find security vulnerabilities in applications. The repository contains various templates, including CVEs, and is maintained by the projectdiscovery team. The...

Exploit for Absolute Path Traversal in Rarlab Winrar

This is a PoC exploit for CVE-2018-20250. The exploit targets a vulnerability in the Microsoft Visual C++ compiler, which allows for arbitrary code execution. The vulnerability is related to the way the compiler handles certain types of data. The exploit consists of a Visual Studio solution file...

pikachu

It is an offensive tool for web application security training. The primary CVE ID is not explicitly stated, but the tool is designed to demonstrate various web application vulnerabilities, including but not limited to: Burt Force brute force, XSS cross-site scripting, CSRF cross-site request...

afrog

PoC exploit for CNVD-2021-09650, a vulnerability in the 锐捷网络股份有限公司NBR路由器EWEB网管系统. The exploit targets the system's web interface, allowing an attacker to gain unauthorized access. The vulnerability is a high-severity issue, and the exploit demonstrates how an attacker can bypass authentication an...

nuclei-templates

This repository is a collection of community-curated templates for the nuclei engine to find security vulnerabilities in applications. The templates are stored in the cves/ directory and are used by the nuclei scanner to identify potential vulnerabilities. The repository also contains workflows f...

vulhub

This repository is an offensive tool for web application security training and testing. It is a collection of vulnerable web applications, each designed to demonstrate a specific web application security vulnerability. The repository includes various web applications, such as CouchDB, Git, and...

nuclei-templates

This repository is an offensive tool for nuclei templates. It contains a collection of community-curated templates for the nuclei engine to find security vulnerabilities in applications. The templates are stored in the cves directory and are used by the nuclei scanner to identify potential...

p0insettia

It is an offensive tool for iOS jailbreak. The tool, named p0insettia, is designed to perform a tethered jailbreak on iOS 10.3.4 32-bit devices, specifically the iPhone 5, using the checkm8 BootROM exploit. The tool is written in C and uses the libcurl library for network operations. The code is...

Exploit for SQL Injection in Zabbix

This repository is an offensive tool for vulnerability research and exploitation. It contains a collection of vulnerable environments and exploits for various software and frameworks, including CouchDB, FFmpeg, Git, and Oracle Java. The repository is maintained by phith0n and is hosted on GitHub...

exploitdb

This is an offensive tool for Exploits. It is a repository of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers. The repository contains a collection of exploits for various operating systems and software, including AIX,...

Exploit for SQL Injection in Zabbix

This repository is an offensive tool for cybersecurity training and education, specifically targeting various vulnerabilities in software and systems. It contains a collection of exploits, tools, and examples for learning and practicing cybersecurity skills. The primary vulnerability targeted by...

exploitdb

The Exploit Database Git Repository This is an official repository of The Exploit Database, a project sponsored by Offensive Security. Our repositories are: - Exploits & Shellcodes: https://github.com/offensive-security/exploitdb - Binary Exploits:...

Exploit for Expression Language Injection in Vmware Spring_Cloud_Gateway

漏洞简介 Spring Cloud Gateway 是 Spring Cloud 的一个全新项目，该项目是基于 Spring 5.0，Spring Boot 2.0 和 Project Reactor 等技术开发的网关，它旨在为微服务架构提供一种简单有效的统一的API路由管理方式。 前段时间springCloud Gateway被爆致命RCE CVE ,cve信息显示当应用程序启用和暴露Spring Cloud Gateway的Gateway Actuator endpoint时，会受到远程代码注入攻击，攻击者发送恶意请求从而可远程执行任意代码。目前受影响的版本如下： 3.1.0 3.0...

Exploit for SQL Injection in Zabbix

This is a pre-built vulnerable environment based on Docker-Compose, maintained by Vulhub. The repository contains various vulnerable applications and services, including CouchDB, FFmpeg, Git, and Jenkins, among others. The vulnerabilities are identified by CVE IDs, such as CVE-2016-10134,...

Exploit for Path Traversal in F5 Big-Ip_Access_Policy_Manager

CVE-2020-5902 is a vulnerability in BIG-IP, a load balancer and application delivery controller. The vulnerability is a remote code execution RCE flaw that allows an attacker to execute arbitrary code on the BIG-IP system. The vulnerability exists in the BIG-IP web interface, specifically in the...

nuclei-templates

This repository is a collection of templates for the nuclei engine, a tool used to find security vulnerabilities in applications. The templates are used to identify potential vulnerabilities and are contributed by both the project's team and the community. The repository contains various template...

vulhub

This repository is an open-source project for vulnerability research and training, maintained by phith0n. It contains a collection of vulnerable environments and tools for testing and learning about various security vulnerabilities. The repository is hosted on GitHub and has a community-driven...

poc-hub

0x01-免责声明 该项目仅供授权下使用，禁止使用该项目进行违法操作，否则自行承担后果，请各位遵守《中华人民共和国网络安全法》！！！ 0x02-项目介绍 专注于漏洞复现，不含漏洞分析 2021/12/13 有感于漏洞之多，复现不过来，故选择投身xray和goby两大阵营，与其自己一个一个复现漏洞，不如提交几个漏洞获取xray高级版和goby红队版，直接享用里面的poc库...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

PoC exploit for CVE-2021-4034, a local privilege escalation vulnerability in Polkit's pkexec. The repository contains Python code that exploits this vulnerability to gain root privileges. The code is based on the original C code by blasty and uses the msfvenom payload generator to create a shared...

vulhub

This is a pre-built vulnerable environment based on Docker-Compose, maintained by the Vulhub project. The repository contains a collection of vulnerable applications and services, including CouchDB, FFmpeg, Git, and more, which can be used for testing and training purposes. The environment is...

csv-plus_vulnerability

No description...

SpoolFool

This is a code analysis of the AddUser repository. Classification: Exploit module/toolkit targeting Windows systems. Primary CVE ID: Not explicitly stated, but the code appears to be related to the exploitation of a vulnerability in the Windows NetAPI32 library. Target product/service: Windows...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

This repository is a proof-of-concept PoC exploit for CVE-2021-4034, a vulnerability in the polkit privilege escalation exploit. The exploit is implemented in C and uses the execve system call to execute a shell with elevated privileges. The vulnerability is related to the way polkit handles user...

Exploit for Classic Buffer Overflow in Openssl

Vulnerabilityrecurrence-漏洞复现 介绍 复现部分与汽车网络安全相关的漏洞. 软件架构 - OpenSSL CVE-2021-3711 SM2 Decryption Buffer Overflow 使用说明 1. 请参考各分部分 readme 文件. 2. 所有内容搜集于网路,请勿用于非法途径,仅供学习参考. 参与贡献 1. Fork 本仓库 2. 新建 Featxxx 分支 3. 提交代码 4. 新建 Pull Request...

Demo

This repository is an offensive tool for domain enumeration and vulnerability scanning. It contains a collection of tools and scripts for performing domain enumeration, subdomain brute forcing, and database vulnerability scanning. The tools include SubDomainsBrute, wydomain, dnsmaper, orangescan,...

vulhub

This is an offensive tool repository for vulnerability research and exploitation. It is a collection of vulnerable environments and exploits for various software and frameworks, including CouchDB, FFmpeg, Git, and others. The repository is maintained by Vulhub, a community-driven project for...

Exploit for Path Traversal in Mikrotik Routeros

Ladon Scanner For Golang Wiki http://k8gege.org/Ladon/LadonGo.html 简介...

Exploit for CVE-2021-3129

laravel-CVE-2021-3129-EXP CVE-2021-3129 一键 getshell 用法 python3 laravel-CVE-2021-3129-EXP.py http://127.0.0.1:8000 成功以后使用哥斯拉链接即可。...

redis-rce

PoC exploit for Redis RCE Remote Code Execution in Redis 4.x/5.x. The exploit is inspired by Redis post-exploitation techniques and is based on a modified version of the Redis Rogue Server. The exploit uses the RedisModules-ExecuteCommand library to load a custom Redis module, which allows for...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

PoC exploit for CVE-2021-4034, a privilege escalation vulnerability in polkit. The target vulnerability class is RCE Remote Code Execution, and the probable entry point is the cve-2021-4034.c file, which is compiled into an executable. The exploit is typically invoked by running ./cve-2021-4034...

nuclei-templates

This is a GitHub repository for a community-curated list of templates for the Nuclei engine to find security vulnerabilities in applications. The repository contains various templates for the Nuclei scanner, which powers the actual scanning engine. The templates are provided by the project's team...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

PoC exploit for CVE-2021-4034, a Linux local privilege escalation vulnerability. The target is the polkit privilege escalation exploit, which has a wide coverage and is stable. The vulnerability class/vector is auth bypass, specifically a privilege escalation exploit. The probable entry point is...

Exploit for OS Command Injection in Docker

The repository is a proof-of-concept PoC exploit for CVE-2019-5736, a container escape vulnerability in Docker. The PoC is written in Go and is designed to overwrite the /bin/sh binary in a container with a malicious interpreter path, allowing for code execution on the host system. The exploit...

CTF-All-In-One

This is a comprehensive guide to CTF Capture The Flag competitions, specifically focusing on the Pwn binary exploitation aspect. The book is written by Yang Cheng, a member of L-Team, and is intended for beginners. It covers the basics of binary exploitation, including memory management, buffer...

cve_tracking

cvetracking 介绍 cve 补丁自动获取工具，该工具将会根据 cve 和 rpm 包自动在上游社区查找补丁并反馈结果，同时也可以下载查找到的补丁以及验证补丁的可用性。 软件架构 python 可执行代码 安装教程 1. 下载代码 shell git clone https://gitee.com/openeuler/cve-manager.git 2. 进入工具执行目录 shell cd xxx上述代码下载目录/cve-manager/cve-agency-manager/cvetracking 3. 在 cve-tracking.yaml 的 authentication 中...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Safari

Awesome Web Security 🐶 Curated list of Web Security materials and resources. Needless to say, most websites suffer from various types of bugs which may eventually lead to vulnerabilities. Why would this happen so often? There can be many factors involved including misconfiguration, shortage of...

vulhub

This is an open-source collection of vulnerable web applications and environments, designed for security training and testing. The repository contains a variety of applications, including web servers, databases, and other services, each with its own set of vulnerabilities. The goal is to provide ...

Exploit for SQL Injection in Zabbix

This repository is an open-source collection of vulnerable web applications and tools for security research and education, maintained by phith0n. It is an offensive tool for web application security research. The repository contains various vulnerable web applications, including CouchDB, FFmpeg,...

Exploit for Race Condition in Canonical Ubuntu_Linux

This is a PoC Proof of Concept exploit for CVE-2016-5195, also known as Dirty COW. The exploit relies on ptrace to patch the vDSO Virtual Dynamic Shared Object and create a TCP reverse shell to the attacker's machine. The target of the exploit is the Linux kernel, and the vulnerability class is a...

securitylab

This repository is an offensive tool for a CodeQL query library. It contains various CodeQL queries for detecting vulnerabilities in C++ code, specifically targeting the ChakraCore and Chromium projects. The queries are designed to identify potential security issues, such as bad overflow checks,...