Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Exploit
Exploit refers to a piece of code or technique that takes advantage of a security vulnerability in a system, application, or network to cause unintended behavior. Exploits can be used by attackers to gain unauthorized access, escalate privileges, execute arbitrary code, or cause a denial of service. This topic covers the various types of exploits, such as zero-day exploits, remote code execution, and privilege escalation. It also explores the lifecycle of an exploit, from discovery and development to deployment and mitigation, and highlights the importance of vulnerability management and patching in preventing exploits.
- GitHub: https://github.com/topics/exploit
- Wikipedia: https://en.wikipedia.org/wiki/Exploit_(computer_security)
- Created by: The cybersecurity community
- Related Topics: hacking, cybersecurity, penetration-testing, vulnerability-assessment,
- Aliases: exploits, vulnerability-exploit,
- Last updated: 2025-02-07 00:10:19 UTC
- JSON Representation
https://github.com/retr0kr0dy/malloc-bomb
Presenting the latest Linux bomb exploit: not a fork but a malloc-based threat. Delve into the intricacies of this novel vulnerability.
coding cybersecurity denial-of-service dos exploit forkbomb hacking infosec linux malloc pentesting security system-exploitation vulnerability
Last synced: 23 Dec 2024
https://github.com/typicalmodmaker/cve-2024-4956
Proof-Of-Concept (POC) for CVE-2024-4956
cve cve-2024-4956 exploit poc proof-of-concept proofofconcept vulnerability
Last synced: 07 Nov 2024
https://github.com/tigerclips1/ps4jb_update_downloader_usb
What this script does is auto download ps4JB updates that you choose to your USB automation for linux only
automation exploit firmware guide linux ps4 ps4-jailbreak python python-script python3 tigerclips1
Last synced: 07 Jan 2025
https://github.com/codeb0ss/cve-2023-1112-exp
CVE-2023-1112 Auto Exploiter
codeb0ss codeboss cve cve-2023 cve-2023-1112 cve-2023-1112-exp cve-2023-1112-exploiter cve-2023-1112-wp exploit uncodeboss wordpress wordpress0day wordpressexploit
Last synced: 12 Jan 2025
https://github.com/p1ckzi/CVE-2012-5519
cups-root-file-read.sh | CVE-2012-5519
cups-root-file-read cve cve-2012-5519 cves exploit hacking pentesting-tools
Last synced: 23 Oct 2024
https://github.com/r-teamdev/rcheat-injector
exploit game-haking injector lua rcheat-injector roblox roblox-lua roblox-script scripts
Last synced: 14 Oct 2024
https://github.com/codeb0ss/cve-2023-20073-
Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]
0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router
Last synced: 12 Jan 2025
https://github.com/lynk4/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit metasploitable metasploitable-2 metasploitable-3 python vsftpd-exploit
Last synced: 01 Jan 2025
https://github.com/5amu/pocbrowser
Scrape websites to find PoCs for CVEs
crystal crystal-lang cve cybersecurity exploit pentesting proof-of-concept scraping security-tool security-tools vulnerability-assessment
Last synced: 07 Feb 2025
https://github.com/miguelzacca/afs
Redirection of sensitive form data to a remote server. Self-XSS
cheat dom-manipulation dommanipulation exploit google-hacking googlehacking hacking javascript js json ngrok node nodejs self-xss server vulnerability xss xss-injection
Last synced: 23 Dec 2024
https://github.com/kernelerr/vlc-cve-2008-4654-exploit
An EXP could run on Windows x64 against CVE-2008-4654.
cve exploit out-of-memory vlc vlc-media-player
Last synced: 19 Jan 2025
https://github.com/whokilleddb/cve-2019-15107
CVE-2019-15107 Webmin Exploit in C
Last synced: 01 Jan 2025
https://github.com/p1ckzi/cve-2022-35513
CVE-2022-35513 | blink1-pass-decrypt
blink1-pass-decrypt blink1control2 cve cve-2022-35513 exploit
Last synced: 30 Jan 2025
https://github.com/seqred-s-a/CVE-2020-10551
Privilege escalation in QQBrowser
advisory browser cve cve-2020-10551 exploit qqbrowser security tencent
Last synced: 23 Oct 2024
https://github.com/drdataye/drxploit
DrXploit is a powerful and open-source penetration testing and exploitation tool for web applications. This tool is designed to automate the process of discovering and exploiting vulnerabilities, saving time and effort for security researchers.
bugbounty exploit exploit-db hacking hacking-tool hackweb python3 scanning
Last synced: 20 Nov 2024
https://github.com/hunthubspace/cve-2024-0757-exploit
A PoC Exploit for CVE-2024-0757 - Insert or Embed Articulate Content into WordPress Remote Code Execution (RCE)
bugbounty cve ethical-hacking exploit penetration-testing web
Last synced: 31 Jan 2025
https://github.com/renatoalencar/dlink-dir610-exploits
Exploits for CVE-2020-9376 and CVE-2020-9377
authentication-bypass dlink exploit remote-code-execution
Last synced: 07 Nov 2024
https://github.com/monke443/cve-2023-40028-ghost-arbitrary-file-read
Arbitrary file read in Ghost-CMS allows an attacker to upload a malicious ZIP file with a symlink.
cve cve-2023-40028 exploit ghost-cms github pentesting security vulnerability
Last synced: 27 Dec 2024
https://github.com/a0zhar/ps4payloadloader
This repository will be maintained by me. Super simple to use! It has everything needed to build Your own MiraLoader or Payload Launcher refrenced in the PS4JB Repo by Sleirsgoevy
c exploit freebsd playstation4 ps4 ps4-jailbreak ps4-payload ps4exploit ps4jb ps4payload
Last synced: 20 Jan 2025
https://github.com/hackingyseguridad/CVE-2021-4034
CVE-2021-4034, exploit para escalado de privilegios en SO Linux a root
cve elevar exploit linux privilegios root vuln
Last synced: 23 Oct 2024
https://github.com/n3rada/zero-effort
Exploiting CVE-2020-1472 vulnerability (a.k.a Zerologon) without effort.
active-directory cve-2020-1472 evil-winrm exploit impacket-secretsdump windows zerologon
Last synced: 28 Dec 2024
https://github.com/piotrbania/smb2_exploit_release_ms09-050
smb2 remote exploit for MS09-050
exploit exploitation hacking samba smb2 windows
Last synced: 21 Jan 2025
https://github.com/piotrbania/apple_exploit_talos-2016-0088
apple exploit TALOS-2016-0088
apple exploit hacking macos null-pointer-dereferences
Last synced: 21 Jan 2025
https://github.com/codeb0ss/cve-2024-1698-poc
Mass Exploit CVE-2024-1698 - Wordpress NotificationX <= 2.8.2 - SQL Injection
codeb0ss codeboss cve-2024 cve-2024-1698 cve-2024-1698-exp cve-2024-1698-poc exploit wordpress
Last synced: 13 Nov 2024
https://github.com/lololosys/exploitation_notes
This repository contain common exploitation primites for various platforms
Last synced: 02 Feb 2025
https://github.com/codeb0ss/cve-2024-29824-poc
Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)
codeb0ss cve cve-2024-29824 cve-2024-29824-exp cve-2024-29824-exploit cve-2024-29824-poc exploit ivanti ivanti-rce rce remote-code-execution uncodeboss
Last synced: 13 Nov 2024
https://github.com/krishpranav/exploitdb
Golang tool to search exploits from exploitdb
database db ethical exploit exploitation exploitdb go golang hacking information license mit mongodb open-source osint sqlite
Last synced: 01 Feb 2025
https://github.com/kaanaryoverflow/ipfire-2-25-auth-rce
ipfire 2.25 authenticated remote code execution
Last synced: 05 Feb 2025
https://github.com/m3hu1/speedtyperexploit
speedtyper.dev exploit written in python
Last synced: 15 Jan 2025
https://github.com/randomrobbiebf/cve-2024-0679
ColorMag <= 3.1.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation
cve-2024-0679 exploit wordpress
Last synced: 21 Jan 2025
https://github.com/eqstlab/cve-2024-48914
PoC for CVE-2024-48914
cve exploit poc proof-of-concept security typescript vulnerability
Last synced: 02 Dec 2024
https://github.com/ytisf/snmplicity
the Swiss Army Knife of the SNMP world, but, it's coded in Python, not made of stainless steel!
cisco code-execution exploit redteam-tools redteaming snmp
Last synced: 05 Feb 2025
https://github.com/dubniczky/kernel-exploits
Kernel exploits consisting mostly of privilege escalation attacks against core components of Linux distribtions
cve exploit linux linux-exploits linux-kernel
Last synced: 06 Feb 2025
https://github.com/s1lkys/cve-2021-24884
If an authenticated user who is able to edit Wordpress PHP code in any kind, clicks a malicious link, PHP code can be edited through XSS in Formidable Forms 4.09.04.
exploit formidable wordpress xss
Last synced: 07 Feb 2025
https://github.com/s9ra16bf4/exploits
Proof-of-concept for known security issues
cve cve-2019-13623 exploit exploits ghidra golang
Last synced: 01 Jan 2025
https://github.com/prvvv/chromeforensics
Different code samples for Chrome browser analysis & post exploitation
chrome chrome-devtools exploit forensic forensics forensics-tools hacking password post-exploitation
Last synced: 23 Jan 2025
https://github.com/vaibhavpandeyvpz/dtp-exploit-poc
Simple and single purpose PoC app built using React Native to demonstrate PII leak vulnerability in Delhi Traffic Police's notice payment website.
exploit information leak privacy security vulnerability
Last synced: 02 Jan 2025
https://github.com/mauricelambert/shell-exploit-umbraco
This module implements a shell to exploit a RCE in umbraco CMS.
exploit hackthebox python3 rce rce-exploit remote-code-execution shell umbraco umbraco-cms vulnerability web
Last synced: 14 Jan 2025
https://github.com/mauricelambert/pywcgishell
This package implement a WebShell for CGI and WSGI server.
cgi-script exploit pypi-package python3 web-attacks webshell wsgi-server
Last synced: 14 Jan 2025
https://github.com/shamo0/CVE-2022-1388
BIG-IP iControl REST vulnerability CVE-2022-1388 PoC
1388 2022 bash bigip cve cve-2022-1388 exploit f5 icontrol python rest script shell vulnerabilit
Last synced: 23 Oct 2024
https://github.com/l0nax/CVE-2019-15053
(FAB-2019-00156) Vulnerability discoverd by me CVE-2019-15053
cve cve-2019-15053 exploit poc proof-of-concept vulnerability
Last synced: 23 Oct 2024
https://github.com/langriklol/cve-2020-15227
CVE-2020-15227 exploit
exploit rce security vulnerability
Last synced: 18 Jan 2025
https://github.com/pandh4cker/pandagik
Image Magick Exploit for CVE-2016–3714
exploit imagemagick python3 rce
Last synced: 18 Jan 2025
https://github.com/piotrbania/vmware_exploit_pack_cve-2009-1244
vmware cloudburst exploit CVE-2009-1244
exploit guest-to-host hacking hacktro vmware workstation
Last synced: 21 Jan 2025
https://github.com/enty8080/droppers
Droppers written in assembly to drop executables on the compromised computer system.
assembly exploit payload penetration-testing shellcode
Last synced: 26 Jan 2025
https://github.com/nhas/cve-2024-45337-poc
Proof of concept (POC) for CVE-2024-45337
cve cve-2024-45337 exploit golang hack pentesting poc proof-of-concept ssh
Last synced: 22 Dec 2024
https://github.com/GeorgiiFirsov/CVE-2020-1034
CVE 2020-1034 exploit and presentation
cve cve-2020-1034 education exploit research vulnerability winapi windows
Last synced: 23 Oct 2024
https://github.com/ihsandevs/simplewebshell-php
The Simple Web Shell is a lightweight and user-friendly web-based interface for controlling a website using a single PHP file.
ethical-hacking ethical-hacking-tools exploit hacking php remote-code-execution shell webshell webshells
Last synced: 05 Feb 2025
https://github.com/lucabarile/cve-2022-38604
Exploits and reports for CVE-2022-38604
0-day arbitrary-file-deletion denial-of-service disclosure elevation-of-privilege exploit impersonation link-following link-following-attack local-privilege-escalation mount-point poc proof-of-concept symbolic-link vulnerability wacom wacom-vulnerability windows-denial-of-service write-up zero-day
Last synced: 31 Dec 2024
https://github.com/galihap76/python-reflected-xss-exploit
Little Python script for reflected XSS exploit targeting web applications.
exploit exploitation hacking python web-hacking xss-exploitation xss-vulnerability
Last synced: 31 Jan 2025
https://github.com/whokilleddb/CVE-2019-17662
Exploit for CVE-2019-17662 (ThinVNC 1.0b1)
cve cve-2019-17662 exploit poc thinvnc
Last synced: 23 Oct 2024
https://github.com/cryptoixer/quantumbuilder
QuantumBuilder will make your payload look like any file format (.png,.pdf,.mp4,.doc); you can even disguise them as a folder.
0day-2024 0day-exploit dll-payload doc-exploit doc-exploit-fud exploit fud-crypter malware mp4-exploit pdf-exploit pdf-exploit-builder png-exploit png-exploit-builder quantum-builder quantum-computing trojan trojan-builder trojan-horse-attack uac-bypass windows-defender-bypass
Last synced: 05 Feb 2025
https://github.com/SherlockSec/CVE-2020-0601
A Windows Crypto Exploit
cve cve-2020-0601 exploit windows
Last synced: 23 Oct 2024
https://github.com/Fadavvi/CVE-2018-17431-PoC
Proof of consept for CVE-2018-17431
comodo cve cve-2018-17431 exploit poc proof-of-concept rce remote-code-execution
Last synced: 23 Oct 2024
https://github.com/kvba0000/trackmania-xss-payloads
[POC] Repo of XSS payloads you can try when using Trackmania 1's playerpage
exploit game maniaplanet poc proof-of-concept security trackmania trackmania-api trackmania-nations trackmania-united xss xss-vulnerability
Last synced: 13 Nov 2024
https://github.com/codingchili/cve-2020-14368
Interactive RCE exploit demo for Eclipse CHE
eclipse-che exploit proof-of-concept vulnerability
Last synced: 19 Dec 2024
https://github.com/henriquesebastiao/mkx
Tool to exploit vulnerabilities in Mikrotik routers.
exploit mikrotik mikrotik-exploit password routeros security vulnerability vulnerability-scanners winbox
Last synced: 19 Dec 2024
https://github.com/p1ckzi/cve-2009-2265
cf8-upload.py | CVE-2009-2265
cf8-upload cve cve-2009-2265 exploit hacking pentesting-tools
Last synced: 06 Feb 2025
https://github.com/yoramvandevelde/wp-cli_attack_object_cache
Attacking hosting webservers through WP-CLI
exploit hacking pentesting social-engineering-attacks wordpress wpcli
Last synced: 25 Jan 2025
https://github.com/anajuliabit/euler_hack_poc
Euler Incident POC
ethereum evm exploit foundry invariants solidity
Last synced: 01 Feb 2025
https://github.com/ahmed-alnassif/pwnxss
PwnXSS: Vulnerability (XSS) scanner exploit
beautifulsoup4 exploit fake-useragent pwnxss python3 requests scanner security security-tools threads vulnerability xss xss-scanner
Last synced: 16 Jan 2025
https://github.com/devvyyxyz/devvyys-scripts
Roblox exploit scripts by Devvyyxyz
exploit roblox-cheat roblox-executor roblox-hack script
Last synced: 17 Dec 2024
https://github.com/mxlgv/toaruos-exploits
This is a repository with exploits for ToaruOS.
exploit privelegeescalation toaruos vuln
Last synced: 17 Dec 2024
https://github.com/mauricelambert/cve-2021-42013
These Nmap, Python and Ruby scripts detects and exploits CVE-2021-42013 with RCE and local file disclosure.
cve cve-2021-42013 detection exploit metasploit nmap python3 rce ruby scanner vulnerability
Last synced: 14 Jan 2025
https://github.com/s9ra16bf4/pringles_can_code_generator
Code generator for the xbox series s event
code-generation code-generator event exploit pringels xbox xbox-game-pass
Last synced: 01 Jan 2025
https://github.com/zentonik/nuke-bot
Discord bot script that deletes channels and roles, bans members, changes server details, and spams the server with new channels, roles, and messages.
cheat discord discord-bot exploit nuke nuke-bot nuker nuker-bot
Last synced: 17 Jan 2025
https://github.com/mauricelambert/cve-2021-41773
These Metasploit, Nmap, Python and Ruby scripts detects and exploits CVE-2021-41773 with RCE and local file disclosure.
cve cve-2021-41773 detection exploit metasploit nmap python3 rce ruby scanner vulnerability
Last synced: 14 Jan 2025
https://github.com/qyfashae/memfd_create_2023_exploit
EDUCATIONAL PURPOSES ONLY! Linux/x64 reverse TCP shell exploit via ELF memory processing
exploit linux-exploits python3 shellcode zero-day
Last synced: 01 Feb 2025
https://github.com/claudiaslibrary/hacking-101
A comprehensive guide to becoming a hacker, covering skills, tools, and best practices to master cybersecurity and hacking techniques.
awesome awesome-list cybersecurity ethical-hacking exploit guide hacking how-to learning list network osint penetration-testing pentesting privacy security social-engineering vulnerability webapp
Last synced: 25 Dec 2024
https://github.com/hunthubspace/subscope
SubScope is a Python-based command-line tool that helps you manage domains and subdomains in workspaces using an SQLite database.
automation bugbounty bugbounty-tool database ethical-hacking exploit penetration-testing python sqlite web web-penetration-testing
Last synced: 31 Jan 2025
https://github.com/momenbasel/naggets
old CTF I've made sharing it publicly.
ctf ctf-challenges ctf-platform ctf-playground cve exploit nagios
Last synced: 15 Jan 2025
https://github.com/dktbedwar/dead1ock-h4ck
Vision is a truly unique software for Deadlock
cyber-defense cybersecurity cybersecurity-research dead1ock-h4ck exploit github hacking hacktivism infosec malware pentesting programming ransomware security technology vulnerability
Last synced: 24 Jan 2025
https://github.com/jker768/deadlock-external-cheat
🔱 Deadlock: Wallhack, AimBot, AimBot Soul, RCS, Radar
anti-cheat cheat code deadlock detection exploit external fair-play game-mods github hacking integrity mitigation multiplayer prevention protection reverse-engineering security software validation
Last synced: 21 Dec 2024
https://github.com/javierolmedo/check-ms17-010
🐞 Simple script in powershell to check ms17-010 vulnerability exploited by ransomware WannaCry
exploit ms17-010 powershell powershell-script script vulnerability wannacry
Last synced: 28 Jan 2025
https://github.com/whokilleddb/cve-2019-17662
Exploit for CVE-2019-17662 (ThinVNC 1.0b1)
cve cve-2019-17662 exploit poc thinvnc
Last synced: 01 Jan 2025
https://github.com/francescodisalesgithub/downloadsploit
QuickScript to download exploits from exploitdb
download download-exploits exploit exploitdb exploits hacking hacking-tool metasploit quickscript searchsploit
Last synced: 28 Jan 2025
https://github.com/kdandy/pentest_tools
WebTest Tools
blueteam cybersecurity exploit pentest pentesting redteam security-tools shell tools website
Last synced: 21 Jan 2025
https://github.com/upcraftlp/upsidedown
Minecraft mod that focuses on the looks of the Minecraft client.
client client-side cosmetic cosmetics exploit exploitation exploits forge forge-mod minecraft minecraft-client minecraft-forge minecraft-mod minecraftforge
Last synced: 21 Dec 2024
https://github.com/caenjones/codespaces-desktop
Web-based operating system running in Github Codespaces!
bypass codespaces exploit github kasmvnc proxy
Last synced: 11 Nov 2024
https://github.com/jenderal92/wp-cve-2023-28121
Wordpress CVE-2023-28121
bot-auto-scanner-vuln bot-auto-upload-shell cve-2023-28121 cve-wordpress exploit vulnerability wordpress
Last synced: 21 Dec 2024
https://github.com/codeb0ss/cve-2024-25735-poc
CVE-2024-25735 - WyreStorm Apollo VX20 - Information Disclosure
codeb0ss cve cve-2024 cve-2024-25753 cve-2024-25753-exp cve-2024-25753-poc exploit exploits uncodeboss vulnerability
Last synced: 12 Jan 2025
https://github.com/codeb0ss/cve-2023-3836
0day bugbounty codeb0ss codeboss cve cve-2023-3836 exploit exploiter hackerone uncodeboss webshell
Last synced: 12 Jan 2025
https://github.com/jenderal92/chamilo-cve-2023-34960
Wordpress CVE-2023-34960
cve-2023-34960 exploit exploit-wordpress vulnerability wordpress wordpress-vulnerability
Last synced: 21 Dec 2024
https://github.com/m3ssap0/struts2_cve-2017-5638
This is a sort of Java porting of the Python exploit at: https://www.exploit-db.com/exploits/41570/.
cve-2017-5638 exploit security security-tools struts2 vulnerability vulnerability-scanners
Last synced: 12 Jan 2025
https://github.com/mykhis/jpg-png-exploit-slient-builder-exploit-database-cve-2023-malware
In the hushed galleries of the Silent JPG Exploit, a symphony shrouded in enigma unfurls—an opus named silent-jpg-exploit-2018—a title that reverberates through the annals of intrigue.
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 28 Jan 2025
https://github.com/gill-singh-a/docker-api-remote-root-shell-exploit
A Simple Python Program that uses Docker Module to communicate with Docker API and gets a Remote Root Shell on the Target Device
Last synced: 07 Feb 2025
https://github.com/atls0572212529/rafel-rat--9637-
-------> RAFEL<------ Android Rat Written in Java With WebPanel For Controlling Victims...Hack Android Devices
android android-hack-rat android-rat android-remote anti-vm bypass-vm device-management exploit hack-android hacking hacking-tool java-rat pentestin pentesting pentesting-android php-rat remote-access-tool remote-access-trojan
Last synced: 27 Dec 2024
https://github.com/mauricelambert/webscriptswebshell
Install a WebShell on hardened and deployed WebScripts (using Apache and mod_wsgi).
apache exploit web-attacks webscripts webshell wsgi
Last synced: 24 Jan 2025