elweth-sec

elweth-sec's Stars

• shellphish/how2heap

  A repository for learning various heap exploitation techniques.

  Language:C7.6k264641.2k

• Notselwyn/CVE-2024-1086

  Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

  Language:C2.3k2817312

• swisskyrepo/InternalAllTheThings

  Active Directory and Internal Pentest Cheatsheets

  Language:HTML1.3k180262

• glitchedgitz/cook

  A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.

  Language:Go1.2k2116120

• c0dejump/HExHTTP

  Header Exploitation HTTP

  Language:Python4764557

• bata24/gef

  GEF - GDB Enhanced Features for exploit devs & reversers

  Language:Python44188041

• pr0cf5/kernel-exploit-practice

  repository for kernel exploit practice

  Language:Batchfile39612249

• cosad3s/postleaks

  Search for sensitive data in Postman public library.

  Language:Python2002731

• thalium/symless

  Language:Python19893014

• BlWasp/rs-shell

  A dirty PoC for a reverse shell with cool features in Rust

  Language:Rust1823220

• doyensec/CSPTBurpExtension

  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.

  Language:Java132518

• mxrch/ProtoDeep

  🏄‍♂️ Decode and analyze protobuf efficiently.

  Language:Python117346

• nobodyisnobody/docs

  various docs (that are interesting, or not, depending on the point of view...)

  Language:Python106602

• nuts7/CVE-2023-27372

  SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.

  Language:Python64127

• LMS57/TempleOfPwn

  All Files, Scripts, and exploits can be found here

  Language:Python611111

• cosad3s/hfinder

  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE

  Language:Python531011

• cosad3s/CVE-2022-35914-poc

  Language:Python472012

• Nishacid/WSAAR

  Auto-Recon script that will help you in the Burp Suite Certified Practitioner Examor with any web-security lab.

  Language:Python471010

• Icare1337/LibreOffice_Tips_Bug_Bounty

  Some tips for Bug Bounty using LibreOffice

  Language:HTML46206

• voydstack/shellcoding

  Language:Assembly44306

• ChrisTheCoolHut/Linux_kernel_exploitation

  https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development

  Language:C42414

• xanhacks/OffensiveWeb

  Offensive Web is a documentation website about security research, difficult concepts, bypass and new exploitation techniques.

  Language:HTML24102

• cosad3s/salsa

  SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.

  Language:Java20204

• cosad3s/subscout

  All-in-one subdomains scout tool Docker image

  Language:Shell7100

• AethliosIK/ywh-collab

  YWH Collab is a comparator of private program for hunters collaboration

  Language:Python5100

• Ruulian/initramfs-toolkit

  Toolkit that allows to extract and compress initramfs cpio, useful for Linux kernel exploitation.

  Language:Shell5101

• 9hozt/wegglist

  Weggli wrapper written in go to handle your patterns lists

  Language:Go4101

• jdouliez/webpack_extractor

  A tool that retrieves source files in plain text from a project's sourcemap

  Language:Python3100

• n4sm/vm-make

  Build small QEMU images using Busybox

  Language:Makefile3001

• Jrmbt/kernel_exploit_world

  Tutorial for writing kernel exploits

  Language:C1000