Search Results - RepositoryStats

861

4.9k

mit

90

Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchan...

exp poc hack ladon tools exploit hacking netscan pentest scanner getshell password portscan security ipscanner brute-force security-tools security-scanner

Created 2019-11-02

363 commits to master branch, last one 2 days ago

exphub zhzyker

1.1k

4.1k

unknown

149

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-201...

exp poc nexus drupal tomcat exploit getshell weblogic webshell cve-2020-1938 cve-2020-2551 cve-2020-2555 cve-2020-2883 cve-2020-5902 vulnerability cve-2020-10199 cve-2020-10204 cve-2020-11444 cve-2020-14882

Created 2020-04-01

200 commits to master branch, last one 3 years ago

POC-bomber tr0uble-mAker

379

2.3k

gpl-3.0

38

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

cve exp poc rce redteam getshell poc-bomber vulnerability-scanner

Created 2021-11-26

391 commits to main branch, last one about a year ago

Medusa Ascotbe

338

2.2k

gpl-3.0

44

:cat2:Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

cve exp poc xss mail email virus dnslog medusa payload readteam cobaltstrike metasploit-framework

Created 2019-08-27

741 commits to master branch, last one 2 years ago

SpringBootExploit 0x727

311

1.8k

apache-2.0

23

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

exp vul spring exploit springboot vulnerability

This repository has been archived (exclude archived)

Created 2021-10-22

44 commits to main branch, last one 2 years ago

Goby gobysec

151

1.4k

unknown

31

Attack surface mapping

Created 2019-06-03

46 commits to master branch, last one 8 months ago

bylibrary BaizeSec

378

1.4k

unknown

44

白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目

exp poc sec baize security

Created 2020-10-20

71 commits to main branch, last one about a year ago

FastjsonExploit c0ny1

170

1.3k

unknown

15

Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

exp poc fastjson exploiting-vulnerabilities

Created 2019-07-20

7 commits to master branch, last one 4 years ago

TOP GhostTroops

120

668

unknown

30

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

cve exp poc rce exploit payload bugbounty vulnerability

Created 2022-03-19

1,008 commits to main branch, last one a day ago

prismx yqcs

53

496

unknown

7

:: Prism X · Automated Enterprise Network Security Risk Detection and Vulnerability Scanning Tool / 棱镜 X · 自动化企业网络安全风险检测、漏洞扫描工具

exp poc awvs goby fscan nessus nuclei prismx appscan webscanner vulnerability

Created 2023-12-25

77 commits to main branch, last one 3 months ago

spring-spel-0day-poc hktalent

82

354

unknown

11

spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963

exp poc rce 0day java spel spring cve-2022-22963 spring-cloud-function

Created 2022-03-26

14 commits to main branch, last one about a year ago

JsonExp smallfox233

30

325

unknown

6

fastjson漏洞批量检测工具

exp poc fastjson

Created 2023-01-29

114 commits to main branch, last one 4 months ago

lol-bot iholston

52

319

mit

8

An account leveling bot for League of Legends written in Python

bot exp farm game python lcu-api league-bot league-of-legends league-of-legends-api league-of-legends-bot league-of-legends-python

Created 2023-04-14

258 commits to main branch, last one 10 hours ago

nps-auth-bypass carr0t2

39

300

apache-2.0

6

nps认证绕过利用工具，CVE-2022-40494，使用此工具可在浏览器访问web控制端后台页面，或者批量获取socks5和http代理

cve exp nps poc fofa proxy bypass

Created 2022-08-04

11 commits to main branch, last one 2 years ago

JNDIExploit 0x727

23

286

unknown

4

一款用于JNDI注入利用的工具，大量参考/引用了Rogue JNDI项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。

exp jndi exploit jndiexploit

Created 2021-10-22

16 commits to master branch, last one 2 years ago

WeaverScan TD0U

14

250

unknown

5

泛微oa漏洞利用工具

oa exp weaver weaveroa

Created 2022-11-29

53 commits to main branch, last one about a year ago

Goby_PoC_RedTeam CnHack3r

35

248

unknown

14

致力于收集Goby PoC，请勿用于非法操作，后果自负。

cve exp poc goby bypass redteam

Created 2022-09-20

7 commits to main branch, last one 2 years ago

PoC-ExP Cuerz

35

205

agpl-3.0

7

【漏洞Poc知识库】一个网络安全爱好者对网络上一些漏洞poc的收录。

exp poc security

Created 2022-07-18

58 commits to main branch, last one about a year ago

open-exp-plugin mqttsnet

5

176

other

2

open-exp-plugin 是一个示例插件，旨在展示如何开发和扩展 ThingLinks 平台的功能。此插件提供了一个实验性功能扩展示例，帮助开发者深入了解如何利用 ThingLinks 的 API 和插件架构进行自定义开发和集成。

exp iot mqtt plugin thinglinks

Created 2024-09-01

26 commits to main branch, last one 29 days ago

PowerLadon k8gege

56

175

unknown

11

Ladon hacking Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

exp poc ladon exploit hacking netscan pentest vulscan portscan security lanscanner pentest-tool subdomain-scanner pentesting-networks

Created 2019-11-19

55 commits to master branch, last one 11 months ago

REE.PAK.Tool Ekey

24

165

unknown

9

Tools for extract and repack PAK archives from games based on RE ENGINE

Created 2021-10-18

522 commits to main branch, last one 14 days ago

go4Hacker GhostTroops

23

144

apache-2.0

6

Automated penetration and auxiliary systems, providing XSS, XXE, DNS log, SSRF, RCE, web netcat and other Servers,gin-vue-admin，online https://51pwn.com

exp gin poc rce vue hacker pentest exploits framework penetration gin-vue-admin

Created 2022-03-20

47 commits to main branch, last one about a year ago

vulcat CLincat

17

123

gpl-3.0

5

vulcat可用于扫描Web端常见的CVE、CNVD等编号的漏洞，发现漏洞时会返回Payload信息。部分漏洞还支持命令行交互模式，可以持续利用漏洞

Created 2022-04-10

42 commits to main branch, last one 11 months ago

awesome-security-vul-llm xu-xiang

12

87

mit

2

本项目通过大模型联动爬虫，检索Github上所有存有有价值漏洞信息与漏洞POC或规则信息的项目，并自动识别项目的目录结构、Readme信息后进行总结分析并分类，所汇总的项目可以帮助安全行业从业者收集漏洞信息、POC信息、规则等。

Created 2023-12-10

3 commits to main branch, last one 10 months ago

fastjson_study Whoopsunix

7

86

unknown

3

Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul

exp poc vuls fastjson

Created 2022-10-19

10 commits to master branch, last one about a year ago

yapi-rce-webshell Esonhugh

4

65

unknown

2

Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法相比于其他的利用方式更加微操和可控影响更小

exp rce mock yapi mockjs exploit webshell

Created 2022-05-13

8 commits to Skyworship branch, last one 4 months ago

Lizard wr0x00

11

60

other

2

A python-based network security penetration testing tool.一款基于python的web安全渗透测试集成工具

cve exp poc exploit hackweb password scanning webshell termux-tool hacking-tool cve-2018-9995 shodan-python cve-2021-21907 termux-hacking

Created 2022-07-11

111 commits to main branch, last one about a year ago

lisp jamesmoriarty

6

52

mit

5

Minimal Lisp interpreter using 75LOC and only standard libraries.

exp lisp ruby quote conseq lambda tinycode procedure interpreter

Created 2014-06-01

134 commits to master branch, last one about a year ago

LogXj xcanwin

12

48

unknown

3

用于探测Log4j漏洞, 将它POC的威力最大化, POC验证成功后会立即收到目标机器的系统主机名、时间、版本号、用户名、环境变量以及Log4j路径、java版本号、中间件信息等信息.

cve exp poc log4j payload

Created 2022-01-17

9 commits to main branch, last one 9 months ago

PyStegosploit Charmve

14

45

gpl-3.0

4

PoC - Exploit Delivery via Steganography and Polyglots, CVE-2014-0282

cve exp jpg poc jpeg stego charmve decoder exploits steganography encoded-images browser-exploits html-png-polyglot jpg-html-polyglot xss-vulnerability

Created 2021-05-17

9 commits to main branch, last one 5 months ago