Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/pedrib/PoC
Advisories, proof of concept files and exploits that have been made public by @pedrib.
https://github.com/pedrib/PoC
advisories exploits hacking metasploit vulnerabilities
Last synced: 21 days ago
JSON representation
Advisories, proof of concept files and exploits that have been made public by @pedrib.
- Host: GitHub
- URL: https://github.com/pedrib/PoC
- Owner: pedrib
- License: gpl-3.0
- Created: 2013-10-01T15:05:10.000Z (about 11 years ago)
- Default Branch: master
- Last Pushed: 2024-02-03T11:39:41.000Z (10 months ago)
- Last Synced: 2024-08-05T17:42:30.001Z (4 months ago)
- Topics: advisories, exploits, hacking, metasploit, vulnerabilities
- Language: Ruby
- Homepage: https://agileinfosec.co.uk
- Size: 23.5 MB
- Stars: 808
- Watchers: 51
- Forks: 170
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-hacking-lists - pedrib/PoC - Advisories, proof of concept files and exploits that have been made public by @pedrib. (Ruby)
README
Pedro Ribeiro ([@pedrib](https://github.com/pedrib)) Exploit Dumping Grounds
===
This repository contains information, exploits, scripts, etc, that I have made public and it is located at https://github.com/pedrib/PoC.* [advisories](./advisories): all my public advisories, research notes, etc
* [Pwn2Own](./advisories/Pwn2Own): advisories related to my Pwn2Own participations
* [exploits](./exploits): all my public exploits
* [metasploit](./exploits/metasploit): Metasploit modules created by myself and integrated into the [Metasploit framework](https://github.com/rapid7/metasploit-framework)
* [Pwn2Own](./exploits/metasploit/pwn2own): Metasploit modules created for / used in Pwn2Own competitions I have participated in
* [fuzzing](./fuzzing): proof of concept or fuzzing testcases that have an assigned CVE identifier but weren't exploitable (or I just didn't have time to dig further and make them exploitable)
* [tools](./tools): a few of my tools which might be useful for other hackers
* [pedigree.csv](./pedigree.csv): a CSV file containing all my trophies, aka CVE and ZDI identifiers assigned to my vulnerabilities, my Metasploit modules that have been integrated into the framework, etc (basically my vulnerability CV)
* [pedrib-gmail-pgp.asc](./pedrib-gmail-pgp.asc): my current PGP key for pedrib_at_gmail_dot_com
##
All information, code and binary data in this repository is released to the public under the GNU General Public License, version 3 (GPLv3).
For information, code or binary data obtained from other sources that has a license which is incompatible with GPLv3, the original license prevails.
For more information check https://www.gnu.org/licenses/gpl-3.0.en.html or the [LICENSE](./LICENSE) file in the root of this repository.
##
Please note that Agile Information Security Limited (Agile InfoSec) relies on information provided by the vendor / product manufacturer when listing fixed versions, products or releases. Agile InfoSec does not verify this information, except when specifically mentioned in the advisory text and requested or contracted by the vendor to do so.Unconfirmed vendor fixes might be ineffective, incomplete or easy to bypass and it is the vendor's responsibility to ensure all the vulnerabilities found by Agile InfoSec are resolved properly. Agile InfoSec usually provides the information in its advisories free of charge to the vendor, as well as a minimum of six months for the vendor to resolve the vulnerabilities identified in its advisories before they are made public.
Agile InfoSec does not accept any responsibility, financial or otherwise, from any material losses, loss of life or reputational loss as a result of misuse of the information or code contained or mentioned in its advisories. It is the vendor's responsibility to ensure their products' security before, during and after release to market.
##
Pedro Ribeiro (pedrib_at_gmail_dot_com)
Founder & Director of Research at [Agile Information Security](https://agileinfosec.co.uk/)
Twitter: [@pedrib1337](https://twitter.com/pedrib1337)
Feel free to send me questions / comments / criticism.