Projects in Awesome Lists tagged with remote-code-execution
A curated list of projects in awesome lists tagged with remote-code-execution .
https://github.com/klezvirus/cve-2021-40444
CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
0day cve-2021-40444 msword office rce remote-code-execution
Last synced: 23 Mar 2025
https://github.com/klezVirus/CVE-2021-40444
CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
0day cve-2021-40444 msword office rce remote-code-execution
Last synced: 27 Mar 2025
https://github.com/dliv3/redis-rogue-server
Redis 4.x/5.x RCE
rce redis redis-rogue-server redis-unauthorized-access remote-code-execution ssrf
Last synced: 05 Apr 2025
https://github.com/jamf/CVE-2020-0796-RCE-POC
CVE-2020-0796 Remote Code Execution POC
cve-2020-0796 poc rce remote-code-execution smbghost
Last synced: 02 Jan 2025
https://github.com/Dliv3/redis-rogue-server
Redis 4.x/5.x RCE
rce redis redis-rogue-server redis-unauthorized-access remote-code-execution ssrf
Last synced: 21 Nov 2024
https://github.com/Rishabh-malhotraa/caucus
Realtime Collaborate Editor with Embedded Compiler
codeforces codemirror hacktoberfest leetcode opensource react realtime-collaboration remote-code-execution yjs
Last synced: 10 Apr 2025
https://github.com/hansmach1ne/lfimap
Local File Inclusion discovery and exploitation tool
command-injection exploitation lfi lfi-exploitation local-file-inclusion penetration-testing pentesting python3 remote-code-execution remote-file-inclusion rfi web-application
Last synced: 15 May 2025
https://github.com/mschwager/0wned
Code execution via Python package installation.
code-execution package-installation pip python python-package remote-code-execution security
Last synced: 10 Apr 2025
https://github.com/paulonteri/remote-code-execution-environment
Have you ever wondered how code execution on competitive programming websites like leetcode works? Code that runs code. Tried implementing that.
code-execution code-executor docker remote-code-execution
Last synced: 20 Dec 2024
https://github.com/michaelliao/remote-code-runner
A remote code running service.
Last synced: 09 May 2025
https://github.com/flast101/php-8.1.0-dev-backdoor-rce
PHP 8.1.0-dev Backdoor System Shell Script
backdoor code code-injection exploit exploit-development pentest pentest-tool php-810-dev php8 php810-dev python python3 rce remote-code-execution security shell shell-script shell-scripts user-agent user-agentt
Last synced: 15 Apr 2025
https://github.com/narasimha1997/py4jshell
Simulating Log4j Remote Code Execution (RCE) vulnerability in a flask web server using python's logging library with custom formatter that simulates lookup substitution by executing remote exploit code.
bug log4j python remote-code-execution security
Last synced: 12 Apr 2025
https://github.com/Narasimha1997/py4jshell
Simulating Log4j Remote Code Execution (RCE) vulnerability in a flask web server using python's logging library with custom formatter that simulates lookup substitution by executing remote exploit code.
bug log4j python remote-code-execution security
Last synced: 21 Nov 2024
https://github.com/aabysszg/chrome-rce-poc
Chrome-RCE-Poc
chrome chrome-rce exploits rce-exploit remote-code-execution
Last synced: 13 Apr 2025
https://github.com/noraj/umbraco-rce
Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
exploit poc proof-of-concept rce remote-code-execution umbraco umbraco-cms umbraco-v7 umbraco7
Last synced: 12 Apr 2025
https://github.com/scheatkode/presshell
πͺ Quick & dirty Wordpress Command Execution Shell
backdoor pentest php remote-code-execution wordpress wordpress-plugin
Last synced: 21 Nov 2024
https://github.com/Warxim/CVE-2022-41852
CVE-2022-41852 Proof of Concept (unofficial)
cve cve-2022-41852 hacking jxpath penetration-testing pentesting proof-of-concept rce remote-code-execution security vulnerability
Last synced: 10 Mar 2025
https://github.com/mbadanoiu/cve-2024-22274
CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server
0-day authenticated cve cve-2024-22274 cves remote-code-execution
Last synced: 01 Mar 2025
https://github.com/amitanshusahu/node-containerized-execution-env
LeetCode backend, scaleble nodjs backend which runs user submitted code in a containerized code execution envroment, implementaion of RabbitMq RPC, devops assignment of @hkirat
dockerode nodejs-server rabbitmq remote-code-execution
Last synced: 11 Apr 2025
https://github.com/codeb0ss/cve-2023-24489-poc
CVE-2023-24489 PoC & Exploiter
citrix-rce cve cve-2023 cve-2023-24489 cve-2023-24489-poc cve-2023-24489-rce kurdish kurdistan rce remote remote-code-execution
Last synced: 03 May 2025
https://github.com/jonoans/umbraco-rce
Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
exploit poc proof-of-concept python3 rce remote-code-execution umbraco-cms umbraco-v7
Last synced: 14 Apr 2025
https://github.com/mfazrinizar/t-xploiter
T-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).
perl remote-code-execution vulnerability-detection websites
Last synced: 08 May 2025
https://github.com/shelld3v/wsshell
WebSocket shell
bind-shell hacking python remote-code-execution shell webshell websocket ws
Last synced: 11 Apr 2025
https://github.com/Traumatism/raycharles
Blind RCE fuzzer
bugbounty command-injection fuzz fuzzer fuzzing hacking injection pwn rce remote-code-execution
Last synced: 10 Mar 2025
https://github.com/twseptian/cve-2022-22947
Spring Cloud Gateway Actuator API SpEL Code Injection (CVE-2022-22947)
command-injection cve-2022-22947 rce remote-code-execution spring-cloud-gateway spring-framework
Last synced: 13 Feb 2025
https://github.com/codeb0ss/cve-2023-1698-poc
Mass Exploit - CVE-2023-1698 < Unauthenticated Remote Command Execution
codeb0ss codeboss cve cve-2023-1698 cve-2023-1698-exp cve-2023-1698-exploit cve-2023-1698-poc cve-2023-1698-rce hackerone rce rce-exploit remote-code-execution
Last synced: 12 Jan 2025
https://github.com/twseptian/cve-2022-24112
Apache APISIX < 2.12.1 Remote Code Execution and Docker Lab
apache-apisix cve-2022-24112 proof-of-concept remote-code-execution
Last synced: 17 Feb 2025
https://github.com/chocapikk/cve-2023-5360
Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: CVE-2023-5360.
cve-2023-5360 exploit hacking infosec open-source penetration-testing python remote-code-execution royal-elementor-addons vulnerability web-security wordpress
Last synced: 13 Apr 2025
https://github.com/runabol/code-execution-demo
A demo of a remote code execution engine using Tork
arbitrary-code-execution code-execution-engine docker golang remote-code-execution remote-code-execution-engine
Last synced: 14 Apr 2025
https://github.com/unicordev/exploit-cve-2020-5844
Exploit for CVE-2020-5844 (Pandora FMS v7.0NG.742) - Remote Code Execution
cve cve-2020-5844 exploit hackthebox linux pandora penetration-testing proof-of-concept python remote-code-execution unicord vulnerability
Last synced: 10 Jun 2025
https://github.com/mordavid/cve-2023-38831-winrar-exploit-generator-poc
This is a POC for the CVE-2023-3883 exploit targeting WinRAR up to 6.22. Modified some existing internet-sourced POCs by introducing greater dynamism and incorporated additional try-except blocks within the code.
archive cve-2023-38831 exploit rce rce-exploit remote-code-execution winrar
Last synced: 12 Jun 2025
https://github.com/noraj/openemr-rce
OpenEMR <= 5.0.1 - (Authenticated) Remote Code Execution
cve-2018-15142 exploit openemr openemr-exploit openemr-rce openemr-shell-upload openemr-vulnerability poc proof-of-concept rce remote-code-execution
Last synced: 12 Apr 2025
https://github.com/so1icitx/cve-2024-25600
Unauthenticated RCE exploit for CVE-2024-25600 in WordPress Bricks Builder <= 1.9.6. Executes arbitrary code remotely.
bricks-builder bricksbuilder cve-2024-25600 exploit hacking pentesting python-3 python3 rce rce-exploit remote-code-execution security-research security-researcher vulnerability wordpress wordpress-plugin
Last synced: 08 Apr 2025
https://github.com/noraj/fuelcms-rce
Fuel CMS 1.4 - Remote Code Execution
cve-2018-16763 exploit fuel-cms poc rce remote-code-execution
Last synced: 12 Apr 2025
https://github.com/ogayanfe/websandbox
An online frontend programming sandbox with integrated browser with live reloading built using react, react-dom, django and the webcontainer api
browser code-editor django django-rest-framework full-stack ide javascript online-editor python react react-router remote-code-execution rest-api typescript web-development webcontainers
Last synced: 11 Apr 2025
https://github.com/twseptian/python-exploit-scripts
This is a repository made by the author to improve his skill in python exploitation
python python-exploits remote-code-execution
Last synced: 09 Apr 2025
https://github.com/mbadanoiu/cve-2023-49964
CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco
0-day authenticated bypass cve cve-2020-12873 cve-2023-49964 cves remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/naralc/multiplayer-code-editor
Have you ever wondered how a collaborative programming site like Replit works? Tried building that.
express online-code-editor react remote-code-execution socket-io tailwindcss typescript web-sockets
Last synced: 22 Apr 2025
https://github.com/w2inc/robopeer
Send code. Wait a bit. Get response!
bun code codegrader docker education grade grader peer peer-to-peer remote-code-execution robo untrusted-code untrusted-environments webserver
Last synced: 10 Apr 2025
https://github.com/W2Inc/NXTPeer
Send code. Wait a bit. Get response!
bun code codegrader docker education grade grader peer peer-to-peer remote-code-execution robo untrusted-code untrusted-environments webserver
Last synced: 11 May 2025
https://github.com/mbadanoiu/cve-2023-34468
CVE-2023-34468: Remote Code Execution via DB Components in Apache NiFi
0-day authenticated cve cve-2023-34468 cves remote-code-execution
Last synced: 23 Jun 2025
https://github.com/renatoalencar/dlink-dir610-exploits
Exploits for CVE-2020-9376 and CVE-2020-9377
authentication-bypass dlink exploit remote-code-execution
Last synced: 12 Apr 2025
https://github.com/waived/cve-2024-4577-php-rce
Automated PHP remote code execution scanner for CVE-2024-4577
cve-2024-4577 exploitation php-rce python3 remote-code-execution vuln-scanner
Last synced: 10 Jun 2025
https://github.com/twseptian/bypass-login-and-rce-from-exploit-db
Bypass Login (SQLi), and Remote Code Execution (RCE)
bypass-login-php-website remote-code-execution sql-injection
Last synced: 09 Apr 2025
https://github.com/mbadanoiu/CVE-2023-34212
CVE-2023-34212: Java Deserialization via JNDI Components in Apache NiFi
0-day authenticated cve cve-2023-34212 cves remote-code-execution
Last synced: 10 Mar 2025
https://github.com/toolkithub/rce-engine
HTTP API for running untrusted code inside isolated Docker containers
docker http remote-code-execution systemd
Last synced: 24 Apr 2025
https://github.com/rabi-siddique/remote-code-executor
This remote code executor is a web application that allows users to write and execute Python and Go code in a web-based environment.
coding containers docker nodejs programming reactjs remote-code-execution software-development software-engineering
Last synced: 25 Mar 2025
https://github.com/mbadanoiu/cve-2023-34212
CVE-2023-34212: Java Deserialization via JNDI Components in Apache NiFi
0-day authenticated cve cve-2023-34212 cves deserialization remote-code-execution
Last synced: 01 Mar 2025
https://github.com/codeb0ss/cve-2024-29824-poc
Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)
codeb0ss cve cve-2024-29824 cve-2024-29824-exp cve-2024-29824-exploit cve-2024-29824-poc exploit ivanti ivanti-rce rce remote-code-execution uncodeboss
Last synced: 22 Jun 2025
https://github.com/winstxnhdw/cve-2022-30190
A proof of concept for CVE-2022-30190 (Follina).
cve-2021-40444 follina msdt remote-code-execution trojan
Last synced: 14 Apr 2025
https://github.com/mbadanoiu/cve-2022-41853
Research into CVE-2022-41853: Using static functions to obtian RCE via Java Deserialization & Remote Codebase Attack
cve-2022-41853 deserialization remote-code-execution security-research
Last synced: 01 Mar 2025
https://github.com/mythra/better-errors-rce
Shows off an RCE with better_errors w/ binding_of_caller using DNS Rebinding
rce remote-code-execution security
Last synced: 05 Mar 2025
https://github.com/nikhil25803/code-judge
An online code judge platform (like leetcode). Remote code execution in a docker container invoked by Lambda function.
aws aws-lambda docker lambda-docker nextjs online-judge python3 remote-code-execution typescript
Last synced: 04 Apr 2025
https://github.com/mbadanoiu/cve-2021-46364
CVE-2021-46364: YAML Deserialization in Magnolia CMS
0-day authenticated cve cve-2021-46364 cves deserialization remote-code-execution
Last synced: 17 Jun 2025
https://github.com/xosnrdev/rce-images
RCE Runtime Images for running user code.
docker nix nixos rce remote-code-execution remote-code-execution-engine
Last synced: 20 Jan 2025
https://github.com/twseptian/rce-authenticated-from-exploit-db
RCE Authenticated from From Exploit-DB
Last synced: 17 Feb 2025
https://github.com/mauricelambert/shell-exploit-umbraco
This module implements a shell to exploit a RCE in umbraco CMS.
exploit hackthebox python3 rce rce-exploit remote-code-execution shell umbraco umbraco-cms vulnerability web
Last synced: 04 Mar 2025
https://github.com/backdoorali/user-agent-rce
Educational RCE demo using User-Agent injection.
command-injection cybersecurity-education http-headers offensive-security php-security rce remote-access remote-code-execution user-agent web-exploitation
Last synced: 22 Jun 2025
https://github.com/ayeshaashfaq12/vulnerability_scanner
The Vulnerability Scanner is a Django-based application that scans websites for security vulnerabilities, providing insights into potential weaknesses such as SQL Injection, XSS, and CSRF issues. Users receive a detailed analysis and site safety score, helping them enhance their web security posture.
cross-site-scripting django django-application django-project javascript-injection python python-app python-script remote-code-execution sql-injection-attacks vulnerability vulnerability-analysis vulnerability-assessment vulnerability-detection vulnerability-identification vulnerability-scanner vulnerability-scanners vulnerability-scanning
Last synced: 18 Mar 2025
https://github.com/jenderal92/rce-exploit-framework
This framework is designed to assist penetration testers or developers in understanding the mechanics of remote code execution (RCE) exploitation.
cybersecurity-tools exploit-development penetration-testing python-27 python-27-exploit-framework remote-code-execution reverse-shell
Last synced: 13 Feb 2025
https://github.com/Fadavvi/CVE-2018-17431-PoC
Proof of consept for CVE-2018-17431
comodo cve cve-2018-17431 exploit poc proof-of-concept rce remote-code-execution
Last synced: 10 Mar 2025
https://github.com/ihsandevs/simplewebshell-php
The Simple Web Shell is a lightweight and user-friendly web-based interface for controlling a website using a single PHP file.
ethical-hacking ethical-hacking-tools exploit hacking php remote-code-execution shell webshell webshells
Last synced: 30 Mar 2025
https://github.com/pjobsina/ritecms-2.0-exploit-rce
A Remote Code Execution python script to exploit RiteCMS 2.0
exploitation rce-exploit remote-code-execution remote-code-execution-rce
Last synced: 15 Mar 2025
https://github.com/mbadanoiu/mal-001
MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal
0-day authenticated bypass cve-2020-13445 remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/mynameisvinn/kick-server
Backend infrastructure for Kick
Last synced: 18 Feb 2025
https://github.com/mbadanoiu/cve-2022-25813
CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz
0-day cve cve-2022-25813 cves remote-code-execution server-side-template-injection user-interaction
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2022-24442
CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack
0-day authenticated bypass cve cve-2021-25770 cve-2022-24442 cves remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2022-40634
CVE-2022-40634: FreeMarker Server-Side Template Injection in CrafterCMS
0-day authenticated bypass cve cve-2020-25803 cve-2022-40634 cves remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2020-8254
CVE-2020-8254: Zip Slip in Pulse Secure VPN Windows Client
0-day cve cve-2020-8254 cves remote-code-execution user-interaction zip-slip
Last synced: 01 Mar 2025
https://github.com/oelin/rcepm
RCE exploit PoC for multi-player PacMan.
exploit pacman poc proof-of-concept rce remote-code-execution
Last synced: 12 Mar 2025
https://github.com/mbadanoiu/mal-003
MAL-003: Groovy Security Bypass and Stored XSS in Apache OfBiz
0-day authenticated bypass cross-site-scripting groovy remote-code-execution stored-xss
Last synced: 14 Mar 2025
https://github.com/amtzespinosa/kioptrix2-walkthrough
Today I'm hacking into Kioptrix 1.1. Or Kioptrix #2. Whatever. This is one of the many beginner-friendly OSCP-like CTFs of Vulnhub. So it's a great starting point for preparing the OSCP tests.
ctf ctf-writeups kioptrix privilege-escalation remote-code-execution sql-injection
Last synced: 13 May 2025
https://github.com/blue0x1/millhouse-rce-exploit
Millhouse Remote code execution exploit
exploits rce rce-exploit remote-code-execution
Last synced: 23 Feb 2025
https://github.com/yana-gupta/rce
remote code executor
django-application python react remote-code-execution remote-code-learn typescript vite
Last synced: 19 Jun 2025
https://github.com/muhammadwaseem29/cve-2025-24016
CVE-2025-24016: RCE in Wazuh server! Remote Code Execution
cve-2025-24016 cve-2025-24016-poc cybersecurity remote-code-execution security-research wazuh
Last synced: 01 Apr 2025
https://github.com/mbadanoiu/cve-2023-40037
CVE-2023-40037: Incomplete Validation of JDBC and JNDI Connection URLs in Apache NiFi
0-day authenticated bypass cve cve-2023-34212 cve-2023-34468 cve-2023-40037 cves remote-code-execution
Last synced: 11 Jun 2025
https://github.com/0xsyr0/havoc-c2-ssrf-rce-exploit
Merged exploit to abuse SSRF for delivering RCE through websockets.
havoc havoc-framework havoc2 poc proof-of-concept rce remote-code-execution server-side-request-forgery ssrf websockets
Last synced: 10 Jun 2025
https://github.com/so1icitx/cve-2019-9053
Unauthenticated SQL injection exploit for CVE-2019-9053 in CMS Made Simple <= 2.2.9. Extracts admin creds with time-based SQLi.
cve-2019-9053 exploit pentesting python python3 remote-code-execution security sql-injection sqli unauthenticated vulnerability
Last synced: 23 Apr 2025
https://github.com/kw-soft/quicc2py
QuicC2Py is an advanced, modular proof-of-concept implementation of a Command-and-Control (C2) system over UDP
aes-encryption c2 commandandcontrol pentest pentesting python quic remote-code-execution remote-control udp-protocol udp-server
Last synced: 17 Apr 2025
https://github.com/mbadanoiu/magnolia-8348
MAGNOLIA-8348: FreeMarker Restriction Bypass 3 in Magnolia CMS
0-day authenticated bypass remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/functionofpwnosec/cve-2023-36845
Juniper Networks POC Understanding CVE-2023β36845 Remote Code Execution Exploit and Protection
bugbountytips cve-2023-36845 remote-code-execution
Last synced: 15 Mar 2025
https://github.com/toolkithub/rce-images
Language-specific Docker images for remote code execution.
docker-image language-compiler nixpkgs remote-code-execution rust-cli
Last synced: 15 May 2025
https://github.com/mbadanoiu/cve-2021-42561
CVE-2021-42561: Command Injection via the Human Plugin in MITRE Caldera
0-day authenticated cve cve-2021-42561 cves remote-code-execution
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2021-42559
CVE-2021-42559: Command Injection via Configurations in MITRE Caldera
0-day authenticated cve cve-2021-42559 cves remote-code-execution
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/mal-004
MAL-004: Command Injection Bypass for CVE-2020-12641 in Roundcube Webmail
0-day bypass cve-2020-12641 remote-code-execution unauthenticated
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2022-24818
CVE-2022-24818: Java Deserialization via Unchecked JNDI Lookups in GeoServer and GeoTools
0-day cve cve-2022-24818 cves deserialization remote-code-execution
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/magnolia-8281
MAGNOLIA-8281: FreeMarker Restriction Bypass 2 in Magnolia CMS
0-day authenticated bypass remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2020-12641
CVE-2020-12641: Command Injection via β_im_convert_pathβ Parameter in Roundcube Webmail
0-day cve cve-2020-12641 cves remote-code-execution unauthenticated
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2021-46361
CVE-2021-46361: FreeMarker Restriction Bypass in Magnolia CMS
0-day authenticated bypass cve cve-2021-46361 cves remote-code-execution server-side-template-injection
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2022-41678
CVE-2022-41678: Dangerous MBeans Accessible via Jolokia API in Apache ActiveMQ
0-day authenticated cve cve-2022-41678 cves log4jmx remote-code-execution
Last synced: 23 Mar 2025