Trending repositories for topic cve

serve as a reverse proxy to protect your web services from attacks and exploits.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Gather and update all available and newest CVEs with their PoC.

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Open Source Vulnerability Management Platform

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7F

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

A Terminal UI for browsing security vulnerabilities (CVEs)

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

👮 Security advisories of Nextcloud

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

Tool to find CVEs and Exploits.

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase...

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7F

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

👮 Security advisories of Nextcloud

serve as a reverse proxy to protect your web services from attacks and exploits.

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

A Terminal UI for browsing security vulnerabilities (CVEs)

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Tool to find CVEs and Exploits.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase...

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

scalpel是一款命令行漏洞扫描工具，支持深度参数注入，拥有一个强大的数据解析和变异算法，可以将常见的数据格式（json, xml, form等）解析为树结构，然后根据poc中的规则，对树进行变异，包括对叶子节点和树结构 的变异。变异完成之后，将树结构还原为原始的数据格式。

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

WebMap-Nmap Web Dashboard and Reporting

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

serve as a reverse proxy to protect your web services from attacks and exploits.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

Gather and update all available and newest CVEs with their PoC.

面向网络安全从业者的知识文库🍃

Open Source Vulnerability Management Platform

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

cve-search - a tool to perform local searches for known vulnerabilities

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or...

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7F

BootStomp: a bootloader vulnerability finder

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7F

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Github action for monitoring CVE

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

Malicious IP source.

serve as a reverse proxy to protect your web services from attacks and exploits.

👮 Security advisories of Nextcloud

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

CVE-2024-23897 - Jenkins 任意文件读取 利用工具

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.

Arch Linux Security Tracker

A Terminal UI for browsing security vulnerabilities (CVEs)

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

BootStomp: a bootloader vulnerability finder

Red Hat Dependency Analytics extension

Hourly updated database of exploit and exploitation reports

Proof-of-Concept for CVE-2024-46538

serve as a reverse proxy to protect your web services from attacks and exploits.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

Gather and update all available and newest CVEs with their PoC.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

Open Source Vulnerability Management Platform

Proof-of-Concept for CVE-2024-46538

A Terminal UI for browsing security vulnerabilities (CVEs)

面向网络安全从业者的知识文库🍃

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or...

Mapping the information system / Cartographie du système d'information

cve-search - a tool to perform local searches for known vulnerabilities

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...

Proof-of-Concept for CVE-2024-46538

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

Mapping the information system / Cartographie du système d'information

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Malicious IP source.

A Terminal UI for browsing security vulnerabilities (CVEs)

ThreatTracer - A python Script to identify CVE by name & version by @FR13ND0x7F

Laravel RCE Exploit Script - CVE-2021-3129

serve as a reverse proxy to protect your web services from attacks and exploits.

CVE-2024-23897 - Jenkins 任意文件读取 利用工具

Hourly updated database of exploit and exploitation reports

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

Published security vulnerabilities for Apple platform with linked public repositories

CVE-2024-32002 RCE PoC

Proof-of-Concept for CVE-2024-5932

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

A Terminal UI for browsing security vulnerabilities (CVEs)

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Helios: Automated XSS Testing

CVE-2024-32002 RCE PoC

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution

CVE-2024-23897 - Jenkins 任意文件读取 利用工具

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )

CVE-2024-32640 | Automated SQLi Exploitation PoC

CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support

Information & PoC for CVE-2024-45200, Mario Kart 8 Deluxe's "KartLANPwn" buffer overflow vulnerability

Proof-of-Concept for CVE-2024-5932

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

WallEscape vulnerability in util-linux

Analysis of the vulnerability

Proof-of-Concept for CVE-2024-46538

Remote Code Execution (RCE) Vulnerability In Evaluating Property Name Expressions with multies ways to exploit

serve as a reverse proxy to protect your web services from attacks and exploits.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Gather and update all available and newest CVEs with their PoC.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

Open Source Vulnerability Management Platform

面向网络安全从业者的知识文库🍃

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container ima...

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

The EXCLUSIVE Collection of 40,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

A Terminal UI for browsing security vulnerabilities (CVEs)

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

CVE Alerting Platform

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive inf...

Tool to find CVEs and Exploits.

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or...

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

CVE-2024-32002 RCE PoC

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.

Proof-of-Concept for CVE-2024-46538

Analysis of the vulnerability

No description

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution

Malicious IP source.

A Terminal UI for browsing security vulnerabilities (CVEs)

CVE-2024-28955 Exploitation PoC

Remote Code Execution (RCE) Vulnerability In Evaluating Property Name Expressions with multies ways to exploit

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

Helios: Automated XSS Testing

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

CVE-2024-32640 | Automated SQLi Exploitation PoC

Tool to find CVEs and Exploits.