Build software better, together

Mr-xn / Penetration_Testing_POC

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

exploit penetration-testing poc rce csrf cve bypass thinkphp cobalt-strike authentication-bypass getshell penetration-testing-poc csrf-webshell sql-poc poc-exp oa-getshell cve-cms php-bypass sql-getshell

Updated Mar 13, 2022
PowerShell

Medicean / VulApps

Star

快速搭建各种漏洞环境(Various vulnerability environment)

docker struts vulnerabilities cve vulnhub

Updated Oct 27, 2020
Shell

infobyte / faraday

Star

Collaborative Penetration Test and Vulnerability Management Platform

security devops chatops security-audit collaboration orchestration nmap penetration-testing vulnerability infosec pentesting collaborative cve nessus vulnerability-management vulnerability-scanners burpsuite security-automation devsecops continuous-scanning

Updated Feb 10, 2022
Python

qazbnm456 / awesome-cve-poc

Sponsor

Star

✍️ A curated list of CVE PoCs.

awesome poc cve

Updated Jan 4, 2022

trickest / cve

Star

Gather and update all available and newest CVEs with their PoC.

security exploit hacking penetration-testing poc vulnerability infosec pentesting vulnerabilities cve software-security red-team security-tools software-vulnerability software-vulnerabilities latest-cve cve-poc

Updated Mar 12, 2022

zhzyker / vulmap

Star

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Updated Nov 15, 2021
Python

tunz / js-vuln-db

Star

A collection of JavaScript engine CVEs with PoCs

javascript vulnerability cve

Updated Sep 3, 2019

cve-search / cve-search

Star

cve-search - a tool to perform local searches for known vulnerabilities

vulnerabilities cve cpe vulnerability-detection cve-scanning vulnerability-assessment common-vulnerabilities cve-search cve-databases cve-entries

Updated Feb 21, 2022
Python

Ascotbe / Kernelhub

Star

🌴Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

Updated Jan 20, 2022
C

OWASP / Nettacker

Star

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

python security automation scanner bruteforce owasp nmap penetration-testing pentesting cve network-analysis vulnerability-management vulnerability-scanners information-gathering portscanner security-tools vulnerability-scanner penetration-testing-framework hacking-tools pentesting-tools cves

Updated Mar 8, 2022
HTML

Ascotbe / Medusa

Star

🐈Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

mail virus email xss poc medusa cve metasploit-framework payload exp dnslog cobaltstrike readteam

Updated Feb 28, 2022
Python

TH3xACE / SUDO_KILLER

Star

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

sudo exploits ctf cve pentest privilege-escalation oscp pentest-tool linux-exploits oscp-journey misconfiguration oscp-tools oscp-prep sudo-exploitation abuse-sudo

Updated Feb 11, 2022
Shell

nixawk / labs

Star

Vulnerability Labs for security analysis

security exploit vulnerability cve

Updated Mar 10, 2021
Python

opencve / opencve

Star

Open

Products are mainly associated with a vulnerabilty and not vulnerable

Steppenw01f commented Mar 6, 2022

The products and vendors, which are listed in the affected Column of a CVE are often not vulnerable.
For example:
The CVE-2021-44738 has multiple configurations, but only one of each configuration is vulnerable.
From the first configuration only "b2236_firmware" is vulnerable, but not "b2236", if you check the JSON object.
<img width="603" alt="Screenshot 2022-03-06 013750" src="https://user-i

Please add "From" and "Up to" within configuration for a specific vulnerability

Open

Give opencve the capability to run a 'ondemand' import

3

jweny / pocassist

Star

全新的开源漏洞测试框架，实现poc在线编辑、运行、批量测试。使用文档：

security poc vulnerability cve vulnerability-scanners security-tools penetration-testing-poc pocassist

Updated Dec 7, 2021
Go

toolswatch / vFeed

Star

The Correlated CVE Vulnerability And Threat Intelligence Database API

python threat exploits vulnerability scap vulnerability-databases threatintel cve oval vulnerability-detection vulnerability-identification vulnerability-scanners cwe capec intelligence-gathering threat-intelligence vulnerability-database-entry threat-intelligence-database vfeed common-vulnerability-exposure

Updated May 28, 2021
Python

gobysec / Goby

Star

Open

错误反馈

10

gobysec commented May 2, 2021

提供使用的版本及系统
提供必要的操作环境、错误信息、期待的结果
提供必要的截图或代码等细节
鼓励使用标签

提交问题行为准则

arthepsy / CVE-2021-4034

Star

PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)

poc cve cve-2021-4034

Updated Feb 12, 2022
C

Puliczek / CVE-2021-44228-PoC-log4j-bypass-words

Star

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

security exploit log4j hacking cybersecurity poc pentesting writeups bugbounty cve pentest payload red-team bugbounty-writeups security-writeups cve-2021-44228 bugbounttips cve-2021-45046 cve-2021-45105

Updated Jan 15, 2022
Java

fs0c131y / ESFileExplorerOpenPortVuln

Star

ES File Explorer Open Port Vulnerability - CVE-2019-6447

vulnerability infosec cve cve-2019-6447

Updated Sep 1, 2021
Python

Metnew / uxss-db

Star

🔪Browser logic vulnerabilities ☠️

javascript security browser xss vulnerability cve

Updated Jan 23, 2021
HTML

mufeedvh / moonwalk

Star

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻

🐚

linux security exploit infosec cve exploitation privilege-escalation security-tools redteam red-teaming redteam-tools infosectools

Updated Feb 12, 2022
Rust

Coalfire-Research / java-deserialization-exploits

Star

A collection of curated Java Deserialization Exploits

java exploits cve deserialization-rce

Updated May 16, 2021
Python

nsacyber / Hardware-and-Firmware-Security-Guidance

Star

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

audit vulnerability cve nessus spectre guidance meltdown cve-2017-5754 cve-2017-5715 cve-2017-5753 cve-2018-3640 cve-2018-3639 cve-2018-3693 cve-2018-3665

Updated Jul 19, 2021
C

SabyasachiRana / WebMap

Star

WebMap-Nmap Web Dashboard and Reporting

cybersecurity nmap infosec cve webmap

Updated Nov 13, 2021
Python

m0nad / HellRaiser

Star

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

ruby rails security security-audit network scanner hacking nmap cve network-analysis vulnerability-detection cve-scanning hacking-tool vulnerability-scanners vulnerability-assessment security-tools

Updated Mar 10, 2022
Ruby

unamer / CVE-2018-8120

Star

CVE-2018-8120 Windows LPE exploit

exploit cve cve-2018-8210

Updated May 30, 2018
C++

nluedtke / linux_kernel_cves

Star

Tracking CVEs for the linux Kernel

tracker linux security-audit linux-kernel security-vulnerability cve tracking-cves linux-security

Updated Mar 8, 2022
Vue

pen4uin / java-security

Star

Java安全☞代码审计/漏洞研究/武器化

java vulnerability cve information-security

Updated Mar 11, 2022
Java

intel / cve-bin-tool

Star

Open

Quiet mode broken in main branch?

terriko commented Mar 2, 2022

___________________________ TestCLI.test_quiet_mode ____________________________

self = <test.test_cli.TestCLI object at 0x7fa413663d00>
capsys = <_pytest.capture.CaptureFixture object at 0x7fa4111e6f10>
caplog = <_pytest.logging.LogCaptureFixture object at 0x7fa41114ce50>

    def test_quiet_mode(self, capsys, caplog):
        """Test that an quite mode isn't generating any output"""

Modify format_checkers to add checker name to dictionary allow if needed?

2

Open

Adding type hints to the code

3

Find more good first issues

cve

Here are 555 public repositories matching this topic...

Mr-xn / Penetration_Testing_POC

Medicean / VulApps

infobyte / faraday

qazbnm456 / awesome-cve-poc

trickest / cve

zhzyker / vulmap

tunz / js-vuln-db

cve-search / cve-search

Ascotbe / Kernelhub

OWASP / Nettacker

Ascotbe / Medusa

TH3xACE / SUDO_KILLER

nixawk / labs

opencve / opencve

jweny / pocassist

toolswatch / vFeed

gobysec / Goby

arthepsy / CVE-2021-4034

Puliczek / CVE-2021-44228-PoC-log4j-bypass-words

fs0c131y / ESFileExplorerOpenPortVuln

Metnew / uxss-db

mufeedvh / moonwalk

Coalfire-Research / java-deserialization-exploits

nsacyber / Hardware-and-Firmware-Security-Guidance

SabyasachiRana / WebMap

m0nad / HellRaiser

unamer / CVE-2018-8120

nluedtke / linux_kernel_cves

pen4uin / java-security

intel / cve-bin-tool

Improve this page

Add this topic to your repo