Trending repositories for topic cve

serve as a reverse proxy to protect your web services from attacks and exploits.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

Gather and update all available and newest CVEs with their PoC.

CVE Alerting Platform

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

✍️ A curated list of CVE PoCs.

面向网络安全从业者的知识文库🍃

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

Open Source Vulnerability Management Platform

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

NIST-based CVE lookup store and API powered by Rust.

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive ...

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

NIST-based CVE lookup store and API powered by Rust.

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

serve as a reverse proxy to protect your web services from attacks and exploits.

CVE Alerting Platform

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive ...

Gather and update all available and newest CVEs with their PoC.

✍️ A curated list of CVE PoCs.

面向网络安全从业者的知识文库🍃

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

Attack surface mapping

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

serve as a reverse proxy to protect your web services from attacks and exploits.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

CVE Alerting Platform

Gather and update all available and newest CVEs with their PoC.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

Open Source Vulnerability Management Platform

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive ...

✍️ A curated list of CVE PoCs.

面向网络安全从业者的知识文库🍃

:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

Attack surface mapping

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

NIST-based CVE lookup store and API powered by Rust.

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

PrestaScan Security is a PrestaShop module allowing you to scan your PrestaShop website to identify malware and known vulnerabilities in PrestaShop core and modules.

Information & PoC for CVE-2024-45200, Mario Kart 8 Deluxe's "KartLANPwn" buffer overflow vulnerability

NIST-based CVE lookup store and API powered by Rust.

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

serve as a reverse proxy to protect your web services from attacks and exploits.

CVE Alerting Platform

🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive ...

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.

serve as a reverse proxy to protect your web services from attacks and exploits.

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Gather and update all available and newest CVEs with their PoC.

面向网络安全从业者的知识文库🍃

Open Source Vulnerability Management Platform

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

CVE Alerting Platform

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or...

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container ima...

The EXCLUSIVE Collection of 45,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.

cve-search - a tool to perform local searches for known vulnerabilities

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

✍️ A curated list of CVE PoCs.

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.

A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

serve as a reverse proxy to protect your web services from attacks and exploits.

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

No description

PrestaScan Security is a PrestaShop module allowing you to scan your PrestaShop website to identify malware and known vulnerabilities in PrestaShop core and modules.

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

Joomla! < 4.2.8 - Unauthenticated information disclosure

CVE-2024-27198 & CVE-2024-27199 PoC - RCE, Admin Account Creation, Enum Users, Server Information

Malicious IP source.

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

A Terminal UI for browsing security vulnerabilities (CVEs)

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.

Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

Mapping the information system / Cartographie du système d'information

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

A Terminal UI for browsing security vulnerabilities (CVEs)

SOFA | A MacAdmin's Simple Organized Feed for Apple Software Updates

Helios: Automated XSS Testing

CVE-2024-32002 RCE PoC

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

CVE-2024-23897 - Jenkins 任意文件读取 利用工具

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

CVE-2024-32640 | Automated SQLi Exploitation PoC

Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support

Information & PoC for CVE-2024-45200, Mario Kart 8 Deluxe's "KartLANPwn" buffer overflow vulnerability

Proof-of-Concept for CVE-2024-5932

WallEscape vulnerability in util-linux

Analysis of the vulnerability

Proof-of-Concept for CVE-2024-46538

A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email

Remote Code Execution (RCE) Vulnerability In Evaluating Property Name Expressions with multies ways to exploit

serve as a reverse proxy to protect your web services from attacks and exploits.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Gather and update all available and newest CVEs with their PoC.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...

Open Source Vulnerability Management Platform

面向网络安全从业者的知识文库🍃

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container ima...

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

The EXCLUSIVE Collection of 45,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.

A Terminal UI for browsing security vulnerabilities (CVEs)

CVE Alerting Platform

Tool to find CVEs and Exploits.

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or...

🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive ...

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ser...

CVE-2024-32002 RCE PoC

Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)

CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.

Proof-of-Concept for CVE-2024-46538

Analysis of the vulnerability

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

No description

A Terminal UI for browsing security vulnerabilities (CVEs)

PoC - Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (Scanner and Exploit)

CVE-2024-28955 Exploitation PoC

Malicious IP source.

Remote Code Execution (RCE) Vulnerability In Evaluating Property Name Expressions with multies ways to exploit

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.

Helios: Automated XSS Testing

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CV...

渗透测试工具包 | 开源安全测试工具 | 网络安全工具

CVE-2024-32640 | Automated SQLi Exploitation PoC

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed...

Tool to find CVEs and Exploits.