mrjiushao's Stars
wy876/POC
收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了700多个poc/exp,长期更新。
UltimateSec/ultimaste-nuclei-templates
极致攻防实验室 nuclei 检测 POC
zan8in/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
White-hua/Apt_t00ls
高危漏洞利用工具
its-arun/CVE-2022-39197
CobaltStrike <= 4.7.1 RCE
webraybtl/tongdaoa_poc
详见公众号
veo/wsMemShell
WebSocket 内存马/Webshell,一种新型内存马/WebShell技术
ByHuaiNian/exploit_verify_tools
基于JavaFx编写的C/S图形化界面漏洞验证工具集。
fatedier/frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
chompie1337/SMBGhost_RCE_PoC
orleven/Tentacle
Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.
zhzyker/exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
YDHCUI/CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
RandomSiYuan/Fake_Sqli_Bypass
Fake框架的自动化Fuzz WAF/IDS 功能
Mochazz/ThinkPHP-Vuln
关于ThinkPHP框架的历史漏洞分析集合
rapid7/metasploit-framework
Metasploit Framework
pochubs/pochubs
PocHubs是为了整合网上知名开源框架的漏洞详细和POC
iSafeBlue/TrackRay
溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
grayddq/GScan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
ww9210/Linux_kernel_exploits
Repo for FUZE project. I will also publish some Linux kernel LPE exploits for various real world kernel vulnerabilities here. the samples are uploaded for education purposes for red and blue teams.
arkime/arkime
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
SecWiki/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
SecWiki/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
Hacker0x01/hacker101
Source code for Hacker101.com - a free online web and mobile security class.
ysrc/yulong-hids-archived
[archived] 一款实验性质的主机入侵检测系统
turbo/KPTI-PoC-Collection
Meltdown/Spectre PoC src collection.
FeeiCN/Cobra
Source Code Security Audit (源代码安全审计)
0xbug/Hawkeye
GitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)