ExploitMann's Stars
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
KTN1990/CVE-2022-0316_wordpress_multiple_themes_exploit
( Wordpress Exploit ) Wordpress Multiple themes - Unauthenticated Arbitrary File Upload
im-hanzou/fubucker
Automatic Mass Tool for checking vulnerability in CVE-2022-1386 - Fusion Builder < 3.6.2 - Unauthenticated SSRF
sealldeveloper/CVE-2022-21661-PoC
A Python PoC of CVE-2022-21661, inspired from z92g's Go PoC
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
M3l0nPan/wordpress-cve-2021-29447
Exploit WordPress Media Library XML External Entity Injection (XXE) to exfiltrate files.
Loop-Man/BehindTheCDN
Bypass CDN/WAF
nomi-sec/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
ViRb3/wgcf
🚤 Cross-platform, unofficial CLI for Cloudflare Warp
tarraschk/CVE-2023-36884-Checker
Script to check for CVE-2023-36884 hardening
Coday-meric/POS-ingenico_API
API for use Ingenico POS
Ousret/pyTeliumManager
Python library to manipulate Ingenico mobile payment device like iCT220 or iWL220 equipped with Telium Manager. RS232/USB.
F4pl0/ingenico-pos-dotnet-lib
.netstandard2.0 Class library for communication with Asseco Group Ingenico POS Device written in C#
minsooerickim/BufferOverflowAttack
🔐 explores techniques to exploit and manipulate buffer overflow vulnerabilities in a program.
dhmosfunk/CVE-2023-25690-POC
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
GhostTroops/scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
cybfar/cve-2021-42013-httpd
CVE: 2021-42013 Tested on: 2.4.49 and 2.4.50 Description: Path Traversal or Remote Code Execution vulnerabilities in Apache 2.4.49 and 2.4.50
blackarrowsec/redteam-research
Collection of PoC and offensive techniques used by the BlackArrow Red Team
google/security-research
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
ihebski/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
blackhatethicalhacking/SecretOpt1c
SecretOpt1c is a Red Team tool that helps uncover sensitive information in websites using ACTIVE and PASSIVE Techniques for Superior Accuracy!
lanleft/CVE-2023-1829
0xKayala/NucleiFuzzer
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
OpenCTI-Platform/opencti
Open Cyber Threat Intelligence Platform
SAPT01/HBSQLI
Automated Tool for Testing Header Based Blind SQL Injection
christophetd/CloudFlair
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
xqx12/daily-info
Moham3dRiahi/XAttackProV30
XAttacker Tool PRO V30 Website Vulnerability Scanner & Auto Exploiter
pikpikcu/nodesub
Nodesub is a command-line tool for finding subdomains in bug bounty programs
qeeqbox/honeypots
30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)