Exploit
Exploit refers to a piece of code or technique that takes advantage of a security vulnerability in a system, application, or network to cause unintended behavior. Exploits can be used by attackers to gain unauthorized access, escalate privileges, execute arbitrary code, or cause a denial of service. This topic covers the various types of exploits, such as zero-day exploits, remote code execution, and privilege escalation. It also explores the lifecycle of an exploit, from discovery and development to deployment and mitigation, and highlights the importance of vulnerability management and patching in preventing exploits.
- GitHub: https://github.com/topics/exploit
- Wikipedia: https://en.wikipedia.org/wiki/Exploit_(computer_security)
- Created by: The cybersecurity community
- Related Topics: hacking, cybersecurity, penetration-testing, vulnerability-assessment,
- Aliases: exploits, vulnerability-exploit,
- Last updated: 2026-01-10 00:11:27 UTC
- JSON Representation
https://github.com/nhas/cve-2024-45337-poc
Proof of concept (POC) for CVE-2024-45337
cve cve-2024-45337 exploit golang hack pentesting poc proof-of-concept ssh
Last synced: 09 Apr 2025
https://github.com/loneicewolf/vulnserver-bof
My approach to the VulnServer BOF (Windows 10 - SYSTEM gained)
exploit loneicewolf oscp oscp-prep oscp-tools vulnserver william-martens
Last synced: 09 Apr 2025
https://github.com/vexontop-py/vanishraider
Vanish raid tool - easy server nuke with no efforts!
discord discord-account-generator discord-banner discord-exploit discord-py discord-raid-tool discord-raider discord-token-generator exploit mass-dm mass-mention mass-report py ratelimit-bypass spammer
Last synced: 09 Apr 2025
https://github.com/ndirmn3/simple-aboutblank-blobhttps-datatext-cloakers
about:blank, blob:https, and data:text cloaks
cloak cloaker cloakers cloaking cloaking-utility cloaks exploit school
Last synced: 06 Jan 2026
https://github.com/krishpranav/pyssh
A simple python tool to get ssh password of a target machine when they connect to the pySSH server
exploit pip pip3 python python3 ssh ssh-server
Last synced: 11 Sep 2025
https://github.com/monke443/CVE-2023-40028
Arbitrary file read in Ghost-CMS allows an attacker to upload a malicious ZIP file with a symlink.
cve cve-2023-40028 exploit ghost-cms github pentesting security vulnerability
Last synced: 30 Aug 2025
https://github.com/mython-dev/mythical-payload
Payload Creator for Operating Systems and Programming Language
android bash exploit hacker hacking hacking-tool hacking-tools kalil linux metasploit metasploit-framework payload payload-generator payloads programming python script ubuntu widnows
Last synced: 28 Jul 2025
https://github.com/ezyrockstar/ShellKill
an advanced python-based web shell uploader
bypass-shell bypass-waf cli cybersecurity exploit hacking payload penetration-testing python python-tool python3 rce rce-exploit security security-tool web-shell web-shell-upload
Last synced: 07 Oct 2025
https://github.com/samkg/flush-reload-sidechannel
A demonstration of a sidechannel vulnerability that exploits cache timings using Flush Reload to communicate information over a covert channel
covert-channel exploit intel linux
Last synced: 13 Apr 2025
https://github.com/danucosukosuko/rfsrcexploit
Un nuevo exploit de ChatGPT o una alternativa a D.A.N. Las siglas de RFSR son RE.FU.SE.R. Que se salta la política de OpenAI.
Last synced: 03 Jan 2026
https://github.com/b2r2-org/poe
PoE (Proof-of-Exploit) is a language designed specifically for writing an exploit.
ctf exploit fsharp hacking poe programming-language
Last synced: 06 Oct 2025
https://github.com/baum1810/anonxss
this is a xss exploit for the popular filehoster anonfiles its been around for some while but i have edit it a bit
anofiles anonfiles-xss api baum1810 ethical-hacking ethical-hacking-tools exploit flask flask-server grabber ip ipgrabber python replit requests xss
Last synced: 17 Aug 2025
https://github.com/scipag/browserrecon-asp
Advanced Web Browser Fingerprinting
browser exploit exploitation fingerprint fingerprinting security-vulnerability vulnerability vulnerability-detection vulnerability-identification vulnerability-scanners
Last synced: 08 Oct 2025
https://github.com/helidem/cve-2025-24054-poc
Proof of Concept for the NTLM Hash Leak via .library-ms CVE-2025-24054
cve cve-2025-24054 cve-2025-24071 exploit library-ms ntlm ntlm-hash phishing poc windows
Last synced: 25 Apr 2025
https://github.com/demining/bitcoin-lightning-wallet-vulnerability
How to find a private key in binary code from Bitcoin Lightning Wallet Vulnerability in Quasar Framework
bitcoin bitcoin-wallet blockchain exploit hack hacking metasploit metasploit-framework privatekey vulnerability vulnerable
Last synced: 02 Jan 2026
https://github.com/Acceis/exploit-CVE-2022-0482
Easy!Appointments < 1.4.3 - Unauthenticated PII (events) disclosure
cve cve-2022-0482 disclosure exploit pii
Last synced: 10 Mar 2025
https://github.com/techgaun/exploit-db-search
Search exploit database
exploit offensive-security shell
Last synced: 07 Oct 2025
https://github.com/sertrafurr/thefall.io-infinite-money
Little api abuse found inside the Aywen's game
api api-abuse aywen exploit glitch infinite javascript money tampermonkey
Last synced: 30 Jun 2025
https://github.com/ebrasha/cve-2024-28000
LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000
abdal cve-2024-28000 ebrasha exploit litespeed-cache-privilege poc privilege-escalation-poc wordpress
Last synced: 15 Sep 2025
https://github.com/FOGSEC/isf
ISF(Industrial Control System Exploitation Framework),a exploitation framework based on Python
control exploit framework ics ics-security industrial python systems
Last synced: 10 Mar 2025
https://github.com/xeloxa/xeloxa
Hello 🥷🏿, I'm XELOXA (Ali Sünbül)
cyber cybersecurity exploit penetration-testing pentesting python redteam vulnerability
Last synced: 05 Apr 2025
https://github.com/hunthubspace/exploit-tracker
A script designed to automatically discover new exploits and save results to a file or integrate with your Discord server. Also search for exploits related to specific CVEs of your choice.
bugbounty cve ethical-hacking exploit penetration-testing-tools web
Last synced: 15 Oct 2025
https://github.com/cleilsonandrade/loader-pppwn
PPPwn é um exploit de execução remota de código do kernel para PlayStation 4 até a Firmware 11.00. Baseado na POC compartilhada pelo usuário TheOfficialFloW, foi desenvolvido um script para automação de execução.
backend bash-script exploit pppwn python scapy-library shell-script
Last synced: 23 Apr 2025
https://github.com/rsrdesarrollo/auto-ysoserial
Generate all ysoserial payloads with burp collaborator (or similar)
burp burpsuite exploit java python security security-tools ysoserial
Last synced: 08 Oct 2025
https://github.com/lucadibello/weaponizedping
🔫 A weaponized ping implementation that includes concealed data in the packet payload.
exploit icmp-tunnel ping pinger python3
Last synced: 09 Oct 2025
https://github.com/shafdo/proftpd-1.3.3c-backdoor_command_execution_automated_script
A script to interact with the ProFTPD-1.3.3c inbuilt backdoor
exploit penetration-testing pentesting
Last synced: 13 Apr 2025
https://github.com/4m3rr0r/cve-2011-2523-poc
Python exploit for CVE-2011-2523 (VSFTPD 2.3.4 Backdoor Command Execution)
cve cve-2011-2523 exploit python security vsftpd-exploit
Last synced: 19 Apr 2025
https://github.com/riz4d/scaneye
ScanEye designed to scan a range of IP addresses to detect security surveillance cameras that are streaming video over HTTP or RTSP. The tool sends HTTP requests to each IP address in the specified range and checks for active HTTP services and potential video streams.
cctv-detection exploit ipcamera python rtsp
Last synced: 23 Apr 2025
https://github.com/richardschwabe/chankro3
Exploit mail function in php when admin disabled other functions like shell. Uses LD_PRELOAD
cyber cyber-security exploit pentest-scripts pentesting pentesting-tools php php-exploit
Last synced: 03 Apr 2025
https://github.com/4m3rr0r/cve-2025-30208-poc
CVE-2025-30208 - Vite Arbitrary File Read PoC
cve cve-2025-30208 cve-2025-30208---vite-arbitrary-file-read-poc exploit poc vite-arbitrary-file-read-poc
Last synced: 10 Oct 2025
https://github.com/kube-tarian/kubetak
KubeTaK - Kube Attack. Exploit your K8s cluster and workloads running in it. PenTest K8s. Inspired by the concept of kubesploit by CyberArk and StackHawk.
application-bug application-security bug-fixing exploit kubernetes-attack kubernetes-exploiting penetration-testing pentest pentest-tool pentesting
Last synced: 28 Oct 2025
https://github.com/arpsyndicate/bdu-scores
Бесплатный рейтинг трендовых БДУ уязвимостей по версии VEDAS
bdu exploit vedas vulnerability
Last synced: 27 Jun 2025
https://github.com/demining/defi-attacks
DeFi Attacks & Exploits all the biggest cryptocurrency thefts from 2021 to 2022
attack attacks attacks-threats-vulnerabilites bitcoin bitcoin-wallet blockchain defi defichain ethereum exploit exploits
Last synced: 03 May 2025
https://github.com/edoardottt/edoardottt
Hey! I'm edoardottt! 🏴☠️👹
coding computer-science computing cybersecurity edoardottt exploit hacking internet linux mathematics open-source operating-system osint reconnaissance science security security-tools security-toolset technology university
Last synced: 02 Jul 2025
https://github.com/jsmoreira02/sar2html_exploit
Exploit the Sar2HTML RCE vulnerability and also perform a Shell Upload on the target
cybersecurity exploit hacking python3 reverse-shell vulnerability web-exploitation
Last synced: 09 Jul 2025
https://github.com/karigun/karicam
Best Camera hacker tool💯💯
camer camera camerahack camerahacking cracker cracking cracking-tool csharp exploit hack hacker hacking-code hacking-tool hash-too
Last synced: 16 May 2025
https://github.com/fssay/dall-e
Free DALL-E text-to-image generator using exploit in a third-party service
ai dall-e dalle exploit rust-lang tauri text-to-image
Last synced: 28 Mar 2025
https://github.com/monke443/cve-2023-40028
Arbitrary file read in Ghost-CMS allows an attacker to upload a malicious ZIP file with a symlink.
cve cve-2023-40028 exploit ghost-cms github pentesting security vulnerability
Last synced: 07 May 2025
https://github.com/cyn-ically/thefall.io-infinite-money
Little api abuse found inside the Aywen's game
api api-abuse aywen exploit glitch infinite javascript money tampermonkey
Last synced: 11 Jun 2025
https://github.com/acceis/exploit-cve-2022-0482
Easy!Appointments < 1.4.3 - Unauthenticated PII (events) disclosure
cve cve-2022-0482 disclosure exploit pii
Last synced: 08 Apr 2025
https://github.com/voidsec/virit-explorer-lpe-arbitrary-code-execution
VirIT Explorer v.8.1.68 Local Privilege Escalation (System)/Arbitrary Code Execution
Last synced: 17 Mar 2025
https://github.com/doyensec/exploitable-iot-solution
!Exploitable IoT Exploit
appsec exploit iot iot-security tenda
Last synced: 14 Jun 2025
https://github.com/onuratakan/haimgard
Haimgard is an environment for writing, testing and using exploit code.
cybersecurity environment exploit hacking hacktool module modules python3 testing whitehat
Last synced: 23 Apr 2025
https://github.com/andreiglesias/snow-crash
Cybersecurity challenge series to develop skills in penetration testing, reverse engineering, and exploit development.
ctf ctf-writeups cybersecurity exploit pentesting reverse-engineering
Last synced: 07 May 2025
https://github.com/codeb0ss/cve-2023-20073-
Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]
0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router
Last synced: 10 Sep 2025
https://github.com/0xtas/cve-2012-2982
An exploit for CVE-2012-2982 implemented in Rust
cve-2012-2982 exploit poc rust tryhackme
Last synced: 28 Feb 2025
https://github.com/retr0kr0dy/malloc-bomb
Presenting the latest Linux bomb exploit: not a fork but a malloc-based threat. Delve into the intricacies of this novel vulnerability.
coding cybersecurity denial-of-service dos exploit forkbomb hacking infosec linux malloc pentesting security system-exploitation vulnerability
Last synced: 23 Sep 2025
https://github.com/sertrafurr/get-discord-guild-tag-method
New method to get it at 100% without any bots/selfbots
clan discord discord-tag exploit guild method tag
Last synced: 01 Jul 2025
https://github.com/m3ssap0/wordpress-jetpack-broken-access-control-exploit
Exploits Jetpack < 13.9.1 broken access control (CVE-2024-9926).
cve-2024-9926 exploit jetpack security security-tools vulnerability vulnerability-scan wordpress
Last synced: 28 Apr 2025
https://github.com/eee-n/scratch-commenter-plus
A tool for posting comments on scratch.mit.edu! created by iw131, Scratch Hacks
bookmarklet edge-extension exploit exploitation extension extension-chrome extensions firefox-extension safari-extension scratch scratch-extension scratch-implementation scratch3
Last synced: 18 Mar 2025
https://github.com/epsylon/x11-stack-corruption
X11/libX11.so.6 (XQueryKeymap) Stack corruption/Access violation [PoC+ Fuzzer]
Last synced: 04 Aug 2025
https://github.com/nguyenmg/roblox-synapse
Roblox Synapse Executor is a top-tier script execution tool for Roblox, valued for its advanced features and stability, enabling seamless Lua scripting for game modifications and customization.
bloxfruit-script bloxfruits-autofarm-script bloxfruits-hack-script bloxfruits-script exploit gui lua roblox roblox-lua roblox-script roblox-scripts roblox-synapse robloxscript robloxscripts
Last synced: 09 Apr 2025
https://github.com/passort/uac-bypass-fud
UAC bypass, Elevate, Persistence methods
administrator-privileges bypass-uac dll-hijacking exploit fodhelperbypass fud hacking uac-bypass uacme user-account-control windows
Last synced: 13 Apr 2025
https://github.com/krishpranav/exploitdb
Golang tool to search exploits from exploitdb
database db ethical exploit exploitation exploitdb go golang hacking information license mit mongodb open-source osint sqlite
Last synced: 01 Jul 2025
https://github.com/arpsyndicate/euvd-scores
VEDAS Score Aggregator for EUVDs
euvd exploit exploit-maturity vedas vulnerability
Last synced: 28 Oct 2025
https://github.com/hunthubspace/cve-2024-3105-poc
A PoC Exploit for CVE-2024-3105 - The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress Remote Code Execution (RCE)
bugbounty cve cve-2024-3105 ethical-hacking exploit penetration-testing web
Last synced: 26 Mar 2025
https://github.com/harsh-katiyar/awesome-hacker-engines
A professional multi-engine OSINT and hacker search tool for researchers, pentesters, and cybersecurity professionals.
awesome awesome-list awesome-lists bugbounty cve dns exploit hacking hacking-tools hacktoberfest osint osint-tool redteam redteaming search-engine security security-tools threat-intelligence vulnerability wifi-network
Last synced: 07 Sep 2025
https://github.com/9dl/websploit
New Exploit could be used to gather Vulnerable Links ( PoC )
cybersecurity exploit poc proof-of-concept vulnerable
Last synced: 02 Apr 2025
https://github.com/lynk4/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit metasploitable metasploitable-2 metasploitable-3 python vsftpd-exploit
Last synced: 21 Feb 2025
https://github.com/sleepytariq/php-8.1.0-dev-backdoor-rce
PHP 8.1.0-dev User-Agentt Backdoor Exploit
Last synced: 08 Jul 2025
https://github.com/randomrobbiebf/cve-2024-0679
ColorMag <= 3.1.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation
cve-2024-0679 exploit wordpress
Last synced: 29 Dec 2025
https://github.com/vandycknick/gitlab-cve-2020-10977
GitLab Arbitrary File Read Exploit
cve-2020-10977 exploit gitlab lfi python rce
Last synced: 17 Mar 2025
https://github.com/a0zhar/ps4payloadloader
This repository will be maintained by me. Super simple to use! It has everything needed to build Your own MiraLoader or Payload Launcher refrenced in the PS4JB Repo by Sleirsgoevy
c exploit freebsd playstation4 ps4 ps4-jailbreak ps4-payload ps4exploit ps4jb ps4payload
Last synced: 29 Dec 2025
https://github.com/javierolmedo/check-ms17-010
🐞 Simple script in powershell to check ms17-010 vulnerability exploited by ransomware WannaCry
exploit ms17-010 powershell powershell-script script vulnerability wannacry
Last synced: 29 Oct 2025
https://github.com/r-teamdev/rcheat-injector
exploit game-haking injector lua rcheat-injector roblox roblox-lua roblox-script scripts
Last synced: 16 Dec 2025
https://github.com/kvba0000/trackmania-xss-payloads
[POC] Repo of XSS payloads you can try when using Trackmania 1's playerpage
exploit game maniaplanet poc proof-of-concept security trackmania trackmania-api trackmania-nations trackmania-united xss xss-vulnerability
Last synced: 06 May 2025
https://github.com/0x1bd/yeet
Yet another ESP32 Exploitation Tool
c ccpp cheap-yellow-display cpp cyd embedded embedded-c esp32 esp32-cheap-yellow-display exploit exploitation exploits portable widget-library
Last synced: 17 Jun 2025
https://github.com/mrxiaom/banclickwhenusingitem
Minecraft Trident dupe bug fixer | 修复网络包状态不同步导致刷三叉戟漏洞
bugfix duplicate-detection exploit minecraft paper-plugin trident
Last synced: 07 May 2025
https://github.com/jenderal92/chamilo-cve-2023-34960
Wordpress CVE-2023-34960
cve-2023-34960 exploit exploit-wordpress vulnerability wordpress wordpress-vulnerability
Last synced: 22 Jun 2025
https://github.com/al1ex/cve-2021-3317
CVE-2021-3317
cve-2021-3317 exploit klogserver
Last synced: 22 Jun 2025
https://github.com/codeb0ss/cve-2024-29824-poc
Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)
codeb0ss cve cve-2024-29824 cve-2024-29824-exp cve-2024-29824-exploit cve-2024-29824-poc exploit ivanti ivanti-rce rce remote-code-execution uncodeboss
Last synced: 22 Jun 2025
https://github.com/xiaomingx/ysoserial-plus
ysoserial 最早在 AppSecCali 2015 演讲 "Marshalling Pickles: how deserializing objects will ruin your day" 中发布,包含适用于 Apache Commons Collections (3.x 和 4.x)、Spring Beans/Core (4.x) 和 Groovy (2.3.x) 的 gadget 链。后续版本增加了对 JRE <= 1.7u21 和其他常见 Java 库的支持。
Last synced: 22 Jun 2025
https://github.com/masasron/chameleondump
Dump RFID tag IDs from ChameleonUltra devices
Last synced: 14 Jul 2025
https://github.com/randomrobbiebf/cve-2023-0630
CVE-2023-0630 - Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection
cve-2023-0630 exploit wordpress wordpress-plugin
Last synced: 13 Apr 2025
https://github.com/xerosic/leidenfrost
Local privilege escalation on Windows by abusing CMSTP to bypass User Access Control (UAC)
exploit lpe privilege-escalation uac uac-bypass windows
Last synced: 11 May 2025
https://github.com/seqred-s-a/CVE-2020-10551
Privilege escalation in QQBrowser
advisory browser cve cve-2020-10551 exploit qqbrowser security tencent
Last synced: 10 Mar 2025
https://github.com/p1ckzi/CVE-2012-5519
cups-root-file-read.sh | CVE-2012-5519
cups-root-file-read cve cve-2012-5519 cves exploit hacking pentesting-tools
Last synced: 10 Mar 2025
https://github.com/zeyad-azima/cve-2022-22733
Apache ShardingSphere ElasticJob-UI Privilege Escalation & RCE Exploit
apache apache2 exploit java shardingsphere vulnerability
Last synced: 04 Apr 2025
https://github.com/zeyad-azima/opayforme
CVE-2021-43150 Exploit for `opay` android app webview
Last synced: 12 Jul 2025
https://github.com/loudyyyyy/scriptware
Scriptware is a powerful scripting tool that streamlines the process of writing and executing scripts in various programming languages. It offers a user-friendly interface and advanced features for improved code efficiency.
backup borgbackup delayless exploit fe fluxus hack http krnl lua netbypass netless reanimate rest-api roblox rust script scriptware synapse tauri
Last synced: 28 Mar 2025
https://github.com/arpsyndicate/cnnvd-scores
适用于 CNNVD 的 VEDAS 分数聚合器
cnnvd exploit vedas vulnerability
Last synced: 26 Jun 2025
https://github.com/examplest/uac-bypass-fud
UAC bypass, Elevate, Persistence methods
administrator-privileges bypass-uac dll-hijacking exploit fodhelperbypass fud hacking uac-bypass uacme user-account-control windows
Last synced: 11 Apr 2025
https://github.com/jenderal92/git-dump
This script is a tool to recursively download the contents of the '.git' directory from a website. Using Python and libraries like 'requests' and 'BeautifulSoup', this script examines the directory structure, downloads files, and identifies SHA-1 hashes within Git files.
exploit git git-download git-dumper git-dumper-python git-exposed git-vulnerability python python-git-dumper vulnerability vulnerability-git
Last synced: 29 Jul 2025
https://github.com/kernelerr/vlc-cve-2008-4654-exploit
An EXP could run on Windows x64 against CVE-2008-4654.
cve exploit out-of-memory vlc vlc-media-player
Last synced: 02 Aug 2025
https://github.com/p0dalirius/rpccoercetemplatecpp
A template of C++ code to call a Remote Procedure on a windows machine to coerce an authentication
authentication coerce cpp exploit path rpc smb template unc
Last synced: 16 Aug 2025
https://github.com/francescodisalesgithub/downloadsploit
QuickScript to download exploits from exploitdb
download download-exploits exploit exploitdb exploits hacking hacking-tool metasploit quickscript searchsploit
Last synced: 22 Mar 2025
https://github.com/unicordev/exploit-cve-2025-29927
Exploit for CVE-2025-29927 (Next.js) - Authorization Bypass
authorization bypass exploit middleware nextjs python python3
Last synced: 15 Apr 2025
