chaitin / xray

Star

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

security xss poc vulnerability passive-vulnerability-scanner sqlinjection vulnerability-scanner

Updated Aug 13, 2020
Vue

frohoff / ysoserial

Star

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

java serialization exploit jvm deserialization gadget poc vulnerability javadeser

Updated Jul 10, 2020
Java

k8gege / K8tools

Star

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

database apt exploit scanner hacking password poc brute-force pentest bypass crack privilege-escalation 0day getshell netscan rar-mysql

Updated Jul 18, 2020
PowerShell

qazbnm456 / awesome-cve-poc

Star

✍️ A curated list of CVE PoCs.

awesome poc cve

Updated Jul 29, 2020

k8gege / Ladon

Star

大型内网渗透扫描器&Cobalt Strike，Ladon7.0内置83个模块，包含信息收集/存活主机/IP扫描/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、SMBGhost、Weblogic、ActiveMQ、Tomcat、Struts2系列，密码口令爆破(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB、LDAP、SmbHash、WmiHash、Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

security tools hack exploit scanner hacking password poc brute-force pentest portscan security-scanner exp security-tools ladon ipscanner getshell netscan

Updated Jul 18, 2020
C#

yoyoyo-yo / Gasyori100knock

Star

画像処理100本ノックして画像処理を画像処理して画像処理するためのもの Jap, Eng, Chi

javascript python c-plus-plus algorithm tutorial numpy image-processing poc

Updated Aug 10, 2020
Jupyter Notebook

zhzyker / exphub

Star

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-5902、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Updated Aug 3, 2020
Python

Lucifer1993 / AngelSword

Star

Python3编写的CMS漏洞检测框架

cms poc vulnerability-scanners

Updated Apr 20, 2019
Python

XiphosResearch / exploits

Star

Miscellaneous exploit code

python windows php security hacking exploits poc rce bypass tr-064

Updated May 7, 2020
Python

Mr-xn / Penetration_Testing_POC

Star

渗透测试有关的POC、EXP、脚本、提权、小工具等，欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

cms xss penetration-testing poc rce csrf cve bypass thinkphp getshell php-getshell penetration-testing-poc csrf-webshell cobub-razor sql-poc poc-exp oa-getshell cve-cms php-bypass

Updated Aug 12, 2020
PowerShell

danigargu / CVE-2020-0796

Star

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

exploit poc smbghost cve-2020-0796 coronablue

Updated Apr 8, 2020
C

mai-lang-chai / Middleware-Vulnerability-detection

Star

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

python poc cve exp

Updated Jul 26, 2020
Python

100apps / charles-hacking

Star

Hacking Charles Web Debugging Proxy

poc just-for-learn do-not-use-in-production

Updated Jan 23, 2020

k8gege / K8CScan

Star

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动