rce
There are 466 repositories under rce topic.
Mr-xn/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
LandGrey/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
reddelexc/hackerone-reports
Top disclosed reports from HackerOne
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
JoyChou93/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
tr0uble-mAker/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
gquere/pwn_jenkins
Notes about attacking Jenkins servers
insightglacier/Dictionary-Of-Pentesting
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
p0dalirius/Awesome-RCE-techniques
Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
JKornev/hidden
🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
XiphosResearch/exploits
Miscellaneous exploit code
1N3/BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
pen4uin/java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具
nemesida-waf/waf-bypass
Check your WAF before an attacker does
n0b0dyCN/redis-rogue-server
Redis(<=5.0.5) RCE
cn-panda/JavaCodeAudit
Getting started with java code auditing 代码审计入门的小项目
klezVirus/CVE-2021-40444
CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
vladko312/SSTImap
Automatic SSTI detection tool with interactive interface
LandGrey/spring-boot-upload-file-lead-to-rce-tricks
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
GhostTroops/TOP
TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things
jm33-m0/mec
for mass exploiting
lintstar/About-Attack
一个旨在通过应用场景 / 标签对 Github 红队向工具 / 资源进行分类收集,降低红队技术门槛的手册【持续更新】
jamf/CVE-2020-0796-RCE-POC
CVE-2020-0796 Remote Code Execution POC
kraken-ng/Kraken
Kraken, a modular multi-language webshell coded by @secu_x11
Li4n0/revsuit
RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.
Dliv3/redis-rogue-server
Redis 4.x/5.x RCE
Mr-xn/sunlogin_rce
向日葵 RCE
chennqqi/godnslog
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
SummerSec/SpringExploit
🚀 一款为了学习go而诞生的漏洞利用工具
amalmurali47/git_rce
Exploit PoC for CVE-2024-32002
operatorequals/covertutils
A framework for Backdoor development!
swisskyrepo/DamnWebScanner
Another web vulnerabilities scanner, this extension works on Chrome and Opera
brightio/penelope
Penelope Shell Handler
tangxiaofeng7/SecExample
JAVA 漏洞靶场 (Vulnerability Environment For Java)
xsscx/Commodity-Injection-Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT