"topic:exploit" — Search

3,194 results for “topic:exploit”

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security, vulnerability research, exploit development, reverse engineering, and more. 🔥 Also check: https://hackertraining.org

Jupyter Notebook25.4k4.9kUpdated just now

aiai-securityartificial-intelligenceawesome-listawesome-listscybersecurityethical-hackingexploitexploit-developmentexploitshackerhackershackinghacking-seriespenetration-testingtrainingvulnerabilityvulnerability-assessmentvulnerability-identificationvulnerability-management

vitalysim/Awesome-Hacking-Resources

A collection of hacking / penetration testing resources to make you better!

16.8k2.2kUpdated 2 hours ago

buffer-overflowctfexploithackingmalwaremitmowasppenetration-testingprivilege-escalationprivilege-escalation-linuxreverse-engineeringwindows-privilege-escalation

Gallopsled/pwntools

CTF framework and exploit development library

Python13.3k1.8kUpdated 10 hours ago

assemblybsdcapture-the-flagctfctf-frameworkdefconexploithacktoberfestlinuxpwnablepwntoolspythonpython2python3ropshellcodeshellcode-developmentshellcodingwargame

edoardottt/awesome-hacker-search-engines

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Shell10.3k983Updated just now

awesomeawesome-listawesome-listsbugbountycvednsexploithackinghacking-toolshacktoberfestosintosint-toolredteamredteamingsearch-enginesecuritysecurity-toolsthreat-intelligencevulnerabilitieswifi-network

friuns2/BlackFriday-GPTs-Prompts

List of free GPTs that doesn't require plus subscription

9.2k1.4kUpdated just now

agentsagiaianthropicartifactsawesomeawesome-listbotschatbotchatgptclaudeexploitgeminigooglegpthackjailbreakopenaipromptsspam

frohoff/ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Java8.8k1.9kUpdated 1 hour ago

deserializationexploitgadgetjavajavadeserjvmpocserializationvulnerability

SecWiki/windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

C8.6k2.9kUpdated just now

collectionsexploitkernelpentesttoolwindows

hugsy/gef

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Python8.0k807Updated 6 hours ago

binary-ninjactfdebuggingdiscordexploitexploit-developmentgdbgefida-prolinuxmalware-analysismipspowerpcpwnpwntoolspythonpython-apireverse-engineeringsparc

trickest/cve

Gather and update all available and newest CVEs with their PoC.

HTML7.6k958Updated 6 hours ago

cvecve-pocexploithackinginfoseclatest-cvepenetration-testingpentestingpocred-teamsecuritysecurity-toolssoftware-securitysoftware-vulnerabilitiessoftware-vulnerabilityvulnerabilitiesvulnerability

nomi-sec/PoC-in-GitHub

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

7.6k1.3kUpdated 3 hours ago

cveexploitpocsecurityvulnerability

Mr-xn/Penetration_Testing_POC

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

HTML7.3k2.0kUpdated 15 hours ago

authentication-bypassbypasscobalt-strikecsrfcsrf-webshellcvecve-cmsexploitgetshelloa-getshellpenetration-testingpenetration-testing-pocphp-bypasspocpoc-exprcesql-getshellsql-pocthinkphp

liamg/traitor

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Go7.1k716Updated 10 hours ago

cve-2021-3560cve-2022-0847dirtypipeexploitgtfobinshacktheboxinfosecprivescprivilege-escalationredteam-toolssecurity-tools

yaklang/yakit

Cyber Security ALL-IN-ONE Platform

TypeScript7.1k787Updated 1 hour ago

blueteamburpsuiteexploitgolanghackinghacking-toolspentestredteamredteam-toolsscannersecurity

ihebski/DefaultCreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

Python6.4k754Updated 12 hours ago

blueteamblueteam-toolsblueteamingbugbountycheatsheetcybersecuritydefault-passwordexploitinfosecoffensive-securityoffensive-security-projectspentestpentestingsoc

xairy/linux-kernel-exploitation

A collection of links related to Linux kernel security and exploitation

6.4k1.0kUpdated 14 hours ago

exploitkernel-exploitationlinux-kernelprivilege-escalationsecurity

k8gege/K8tools

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

PowerShell6.2k2.1kUpdated 1 day ago

0daybrute-forcebypasscrackdatabaseexpexploitgetshellhackinglpenetscanpasswordpentestpocprivilege-escalationrcescanner

AzeemIdrisi/PhoneSploit-Pro

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

Python5.7k781Updated 9 hours ago

adbandroidandroid-debug-bridgeandroid-hackingcollaboratecybersecurityexploithackhackinghacking-scripthacking-toolhacktoberfestmetasploit-frameworkmeterpreterpenetration-testingpentest-toolpentestingphonesploitphonesploit-propython

SecWiki/linux-kernel-exploits

linux-kernel-exploits Linux平台提权漏洞集合

C5.6k1.7kUpdated 10 hours ago

awesomecollectionexploitkernellinuxpentesttool

k8gege/Ladon

Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)或方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等，大量高危漏洞检测模块MS17010、Zimbra、Exchange

C#5.3k896Updated 3 days ago

brute-forceexpexploitgetshellhackhackingipscannerladonnetscanpasswordpentestpocportscanscannersecuritysecurity-scannersecurity-toolstools

NullArray/AutoSploit

Automated Mass Exploiter

Python5.2k1.2kUpdated 10 hours ago

automationexploitexploitationmetasploitoffsecpythonsecuritysecurity-tools

bitsadmin/wesng

Windows Exploit Suggester - Next Generation

Python4.8k606Updated 15 hours ago

exploitmicrosoftpatchessuggesterupdateswindows

gommzystudio/device-activity-tracker

A phone number can reveal whether a device is active, in standby or offline (and more). This PoC demonstrates how delivery receipts + RTT timing leak sensitive device-activity patterns. (WhatsApp / Signal)

TypeScript4.8k652Updated 2 hours ago

baileysexploitmessengernodejsphone-numberpocprivacyreactsignaltrackingtypescriptvulnerabilitywhatsapp

karma9874/AndroRAT

A Simple android remote administration tool using sockets. It uses java on the client side and python on the server side

Java4.6k1.5kUpdated just now

androidandroid-applicationandroid-ratandroratapkbackdoorexploithacktoberfestinterpreterinterpreter-commandsjavapythonratreverse-shellsockets

firmianay/CTF-All-In-One

CTF竞赛权威指南

C4.5k710Updated 6 hours ago

bookcryptoctfexploithackingmiscpwnreverse-engineeringsecurityweb

zhzyker/exphub

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Python4.3k1.1kUpdated 10 hours ago