Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Exploit

Exploit refers to a piece of code or technique that takes advantage of a security vulnerability in a system, application, or network to cause unintended behavior. Exploits can be used by attackers to gain unauthorized access, escalate privileges, execute arbitrary code, or cause a denial of service. This topic covers the various types of exploits, such as zero-day exploits, remote code execution, and privilege escalation. It also explores the lifecycle of an exploit, from discovery and development to deployment and mitigation, and highlights the importance of vulnerability management and patching in preventing exploits.

https://github.com/evantesecond/zoom-in-cloaker

when zoomed in to at least 150%, the overlapping content disappears. this is useful for cloaking content

cloak cloaker cloakers cloaking cloaks exploit game games school

Last synced: 25 Mar 2025

https://github.com/tigerclips1/ps4jb_update_downloader_usb

What this script does is auto download ps4JB updates that you choose to your USB automation for linux only

automation exploit firmware guide linux ps4 ps4-jailbreak python python-script python3 tigerclips1

Last synced: 16 Oct 2025

https://github.com/zeyad-azima/opayforme

CVE-2021-43150 Exploit for `opay` android app webview

android exploit flask webview

Last synced: 12 Jul 2025

https://github.com/jenderal92/git-dump

This script is a tool to recursively download the contents of the '.git' directory from a website. Using Python and libraries like 'requests' and 'BeautifulSoup', this script examines the directory structure, downloads files, and identifies SHA-1 hashes within Git files.

exploit git git-download git-dumper git-dumper-python git-exposed git-vulnerability python python-git-dumper vulnerability vulnerability-git

Last synced: 29 Jul 2025

https://github.com/lololosys/exploitation_notes

This repository contain common exploitation primites for various platforms

exploit security-research

Last synced: 07 Jan 2026

https://github.com/a0zhar/ps4payloadloader

This repository will be maintained by me. Super simple to use! It has everything needed to build Your own MiraLoader or Payload Launcher refrenced in the PS4JB Repo by Sleirsgoevy

c exploit freebsd playstation4 ps4 ps4-jailbreak ps4-payload ps4exploit ps4jb ps4payload

Last synced: 29 Dec 2025

https://github.com/zebbern/dorkingwordlists

🧾 | Google Dorks for automation and manual search a list containing my most used dorks in bug bounty and pentesting!

bugbounty dorking dorking-list dorks exploit googe-dorking google google-hacking google-search google-sheets hacking osint osint-list pentest pentesting search-engine searching-algorithms wordlist worlists

Last synced: 11 Mar 2025

https://github.com/drdataye/drxploit

DrXploit is a powerful and open-source penetration testing and exploitation tool for web applications. This tool is designed to automate the process of discovering and exploiting vulnerabilities, saving time and effort for security researchers.

bugbounty exploit exploit-db hacking hacking-tool hackweb python3 scanning

Last synced: 08 Jul 2025

https://github.com/p1ckzi/nanocmshell

authenticated remote code execution via shell upload.

exploit file-upload nanocms nanocmshell php php-reverse-shell rce

Last synced: 31 Mar 2025

https://github.com/vandycknick/gitlab-cve-2020-10977

GitLab Arbitrary File Read Exploit

cve-2020-10977 exploit gitlab lfi python rce

Last synced: 17 Mar 2025

https://github.com/zeyad-azima/cve-2022-22733

Apache ShardingSphere ElasticJob-UI Privilege Escalation & RCE Exploit

apache apache2 exploit java shardingsphere vulnerability

Last synced: 04 Apr 2025

https://github.com/whokilleddb/cve-2019-15107

CVE-2019-15107 Webmin Exploit in C

cve exploit poc vulnerability

Last synced: 21 Feb 2025

https://github.com/sarperavci/exploitme

A collection of containerized security vulnerabilities including privilege escalation CVEs and SUID exploits for hands-on penetration testing practice.

ctf cybersecurity docker exploit penetration-testing privilege-escalation security security-training suid vagrant vulnerable

Last synced: 08 Jul 2025

https://github.com/p0dalirius/rpccoercetemplatecpp

A template of C++ code to call a Remote Procedure on a windows machine to coerce an authentication

authentication coerce cpp exploit path rpc smb template unc

Last synced: 16 Aug 2025

https://github.com/9dl/websploit

New Exploit could be used to gather Vulnerable Links ( PoC )

cybersecurity exploit poc proof-of-concept vulnerable

Last synced: 02 Apr 2025

https://github.com/kernelerr/vlc-cve-2008-4654-exploit

An EXP could run on Windows x64 against CVE-2008-4654.

cve exploit out-of-memory vlc vlc-media-player

Last synced: 02 Aug 2025

https://github.com/mrxiaom/banclickwhenusingitem

Minecraft Trident dupe bug fixer | 修复网络包状态不同步导致刷三叉戟漏洞

bugfix duplicate-detection exploit minecraft paper-plugin trident

Last synced: 07 May 2025

https://github.com/xiaomingx/ysoserial-plus

ysoserial 最早在 AppSecCali 2015 演讲 "Marshalling Pickles: how deserializing objects will ruin your day" 中发布,包含适用于 Apache Commons Collections (3.x 和 4.x)、Spring Beans/Core (4.x) 和 Groovy (2.3.x) 的 gadget 链。后续版本增加了对 JRE <= 1.7u21 和其他常见 Java 库的支持。

exploit java security

Last synced: 22 Jun 2025

https://github.com/hackingyseguridad/CVE-2021-4034

CVE-2021-4034, exploit para escalado de privilegios en SO Linux a root

cve elevar exploit linux privilegios root vuln

Last synced: 10 Mar 2025

https://github.com/lbirchler/sys-call

Linux syscall implementations, calling conventions, and shellcode examples

assembly cli exploit linux shellcode syscalls

Last synced: 27 Mar 2025

https://github.com/javierolmedo/check-ms17-010

🐞 Simple script in powershell to check ms17-010 vulnerability exploited by ransomware WannaCry

exploit ms17-010 powershell powershell-script script vulnerability wannacry

Last synced: 29 Oct 2025

https://github.com/whokilleddb/CVE-2019-15107

CVE-2019-15107 Webmin Exploit in C

cve exploit poc vulnerability

Last synced: 10 Mar 2025

https://github.com/sertrafurr/discord-video-quest-skipper

This script allows you to make video playback on Discord almost instant by speeding up the playback rate by over 19x faster. Ideal for those who want to skip through videos quickly without wasting time, this script ensures your Discord video quests are completed almost immediately!

betterdiscord discord exploit glitch javascript js quest script vencord

Last synced: 01 Jul 2025

https://github.com/ashtondavies/lomoh

Disable admin-forced extensions on managed Chromebooks using the locked mode feature

chromebook chromeos exploit hack unblock

Last synced: 16 May 2025

https://github.com/codingchili/cve-2020-14368

Interactive RCE exploit demo for Eclipse CHE

eclipse-che exploit proof-of-concept vulnerability

Last synced: 06 Apr 2025

https://github.com/mar-ket-vector/metamorpheus

A metamorphic shellcode obfuscator capable of generating more unique shellcodes than there are atoms in the OBSERVABLE UNIVERSE and designed for shellcodes/implants that need to run in W^X memory.

av-evasion backdoor c2 code-mutation exploit implant metamorphic obfuscator polymorphic shellcode

Last synced: 13 May 2025

https://github.com/franckferman/glpi-htmlawed-cve-2022_35914-poc

Automatic scanning (Shodan) and exploitation (PoC) script for the GLPI htmLawed vulnerability (CVE-2022_35914).

bash exploit glpi poc proof-of-concept python python3 remediation shell shodan vuln vulnerabilities vulnerability vulnerability-detection vulnerability-scanning

Last synced: 12 Mar 2025

https://github.com/kissssu/ftp-exploit-vsftpd-2.3.4-backdoor

Python script for exploiting a specific vulnerability in vsFTPd 2.3.4.

exploit python3

Last synced: 28 Oct 2025

https://github.com/enty8080/droppers

Droppers written in assembly to drop executables on the compromised computer system.

assembly exploit payload penetration-testing shellcode

Last synced: 21 Mar 2025

https://github.com/waived/cve-2024-3393

PAN-OS: Firewall Denial-of-Service exploit via malicious DNS query

cve-2024-3393 denial-of-service dns-attack exploit palo-alto-networks pan-os proof-of-concept python3

Last synced: 13 Jul 2025

https://github.com/pandh4cker/pandagik

Image Magick Exploit for CVE-2016–3714

exploit imagemagick python3 rce

Last synced: 25 Dec 2025

https://github.com/mauricelambert/cve-2021-42013

These Nmap, Python and Ruby scripts detects and exploits CVE-2021-42013 with RCE and local file disclosure.

cve cve-2021-42013 detection exploit metasploit nmap python3 rce ruby scanner vulnerability

Last synced: 04 Mar 2025

https://github.com/mauricelambert/cve-2021-41773

These Metasploit, Nmap, Python and Ruby scripts detects and exploits CVE-2021-41773 with RCE and local file disclosure.

cve cve-2021-41773 detection exploit metasploit nmap python3 rce ruby scanner vulnerability

Last synced: 04 Mar 2025

https://github.com/mauricelambert/pywcgishell

This package implement a WebShell for CGI and WSGI server.

cgi-script exploit pypi-package python3 web-attacks webshell wsgi-server

Last synced: 04 Mar 2025

https://github.com/prvvv/chromeforensics

Different code samples for Chrome browser analysis & post exploitation

chrome chrome-devtools exploit forensic forensics forensics-tools hacking password post-exploitation

Last synced: 03 Jan 2026

https://github.com/vaibhavpandeyvpz/dtp-exploit-poc

Simple and single purpose PoC app built using React Native to demonstrate PII leak vulnerability in Delhi Traffic Police's notice payment website.

exploit information leak privacy security vulnerability

Last synced: 29 Jul 2025

https://github.com/langriklol/cve-2020-15227

CVE-2020-15227 exploit

exploit rce security vulnerability

Last synced: 29 Jul 2025

https://github.com/whokilleddb/cve-2019-17662

Exploit for CVE-2019-17662 (ThinVNC 1.0b1)

cve cve-2019-17662 exploit poc thinvnc

Last synced: 31 Jul 2025

https://github.com/momenbasel/naggets

old CTF I've made sharing it publicly.

ctf ctf-challenges ctf-platform ctf-playground cve exploit nagios

Last synced: 03 Aug 2025

https://github.com/devvyyxyz/devvyys-scripts

Roblox exploit scripts by Devvyyxyz

exploit roblox-cheat roblox-executor roblox-hack script

Last synced: 04 Apr 2025

https://github.com/shamo0/CVE-2022-1388

BIG-IP iControl REST vulnerability CVE-2022-1388 PoC

1388 2022 bash bigip cve cve-2022-1388 exploit f5 icontrol python rest script shell vulnerabilit

Last synced: 10 Mar 2025

https://github.com/l0nax/CVE-2019-15053

(FAB-2019-00156) Vulnerability discoverd by me CVE-2019-15053

cve cve-2019-15053 exploit poc proof-of-concept vulnerability

Last synced: 10 Mar 2025

https://github.com/whokilleddb/CVE-2019-17662

Exploit for CVE-2019-17662 (ThinVNC 1.0b1)

cve cve-2019-17662 exploit poc thinvnc

Last synced: 10 Mar 2025

https://github.com/netgian/tiktok-shares

Send automatic shares to your favourites tiktok videos!

exploit hacking http python python3 requests tiktok

Last synced: 22 Feb 2025

https://github.com/SherlockSec/CVE-2020-0601

A Windows Crypto Exploit

cve cve-2020-0601 exploit windows

Last synced: 10 Mar 2025

https://github.com/faisalfs10x/Cisco-CVE-2020-3452-shodan-scanner

simple bash script of CVE-2020-3452 Cisco ASA / Firepower Read-Only Path Traversal Vulnerability checker

cve-2020-3452 exploit poc shodan-dorks

Last synced: 10 May 2025

https://github.com/faisalfs10x/F5-BIG-IP-CVE-2020-5902-shodan-scanner

simple bash script of F5 BIG-IP TMUI Vulnerability CVE-2020-5902 checker

bigip cve-2020-5902 exploit poc

Last synced: 10 May 2025

https://github.com/natthasath/cms-detect-exploit-whatcms

CMS Detection and Exploit Kit based on Whatcms.org API

cms detect exploit joomla wordpress

Last synced: 26 Feb 2025

https://github.com/natthasath/cms-detect-exploit-cmseek

CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs

cms detect exploit joomla wordpress

Last synced: 26 Feb 2025

https://github.com/mauricelambert/webscriptswebshell

Install a WebShell on hardened and deployed WebScripts (using Apache and mod_wsgi).

apache exploit web-attacks webscripts webshell wsgi

Last synced: 20 Jul 2025

https://github.com/asmroyal/0x001829-b

0x001829-B is exploit tool for web servers & for home ip's

csharp csharp-code exploit exploitation exploitation-framework exploits net payload payloads

Last synced: 15 May 2025

https://github.com/mxlgv/toaruos-exploits

This is a repository with exploits for ToaruOS.

exploit privelegeescalation toaruos vuln

Last synced: 16 Jul 2025

https://github.com/ashtondavies/ltmeat-web

Freeze and bypass admin-forced extensions on managed Chromebooks

bypassi chromebook disable exploit extension hack

Last synced: 16 May 2025

https://github.com/hunthubspace/subscope

SubScope is a Python-based command-line tool that helps you manage domains and subdomains in workspaces using an SQLite database.

automation bugbounty bugbounty-tool database ethical-hacking exploit penetration-testing python sqlite web web-penetration-testing

Last synced: 01 Jul 2025

https://github.com/1s64/roblox-fps-gui

Roblox FPS Gui

exploit lua roblox script

Last synced: 16 May 2025

https://github.com/franckferman/cauchemar-apprendre_le_pwn

Référentiel exhaustif pour acquérir une compréhension approfondie des fondamentaux de l'exploitation de binaires. Fruit d'une démarche analytique rigoureuse, ce guide offre une pédagogie structurée, avec explications détaillées et exemples concrets, pour maîtriser pas à pas l'exploitation de binaires.

apprendre apprendre-les-bases apprendre-pwn binary-exploitation exploit exploit-development exploitation francais francaise france gdb heap-overflow learning pwn pwn-college pwn-course-practice pwndbg pwning reverse-engineering stack-overflow

Last synced: 07 Apr 2025

https://github.com/ramona-flower/discord-video-quest-skipper

This script allows you to make video playback on Discord almost instant by speeding up the playback rate by over 19x faster. Ideal for those who want to skip through videos quickly without wasting time, this script ensures your Discord video quests are completed almost immediately!

betterdiscord discord exploit glitch javascript js quest script vencord

Last synced: 24 Mar 2025

https://github.com/z1ph1us/milksad-mnemonic-generator

This tool generates BIP-39 mnemonic phrases derived from Unix timestamps, exploring the 'Milk Sad' vulnerability's implications (CVE-2023-39910)

bip39 bitcoin bitcoin-wallet blockchain bx cryptocurrency cryptography cve-2023-39910 entropy exploit milk-sad mnemonic-generator multi-language security-tool seed-phrase unix-timestamp vulnerability wallet-security

Last synced: 18 Jun 2025

https://github.com/dubniczky/prototype-pollution

JavaScript Prototype Pollution Attack demo against a NodeJS Express server using Lodash

demo exploit javascript lodash prototype-pollution security yarn-berry

Last synced: 31 Mar 2025

https://github.com/dubniczky/remote-keylogger

A compiled keylogger written in python with logging to a remote host

exploit hack keylogger python server

Last synced: 31 Mar 2025

https://github.com/chikof/discord-opera

OperaGX really messed up with this one

discord discord-opera educational exploit opera

Last synced: 31 Mar 2025

https://github.com/evantesecond/krypton

cool tools for school i guess, use https://kryptontools.glitch.me/ if .pages.dev is blocked

bypass chrome chromebook evan exploit exploits games hack krypton school school-chromebook school-hacks school-tools

Last synced: 12 Mar 2025

Exploit Awesome Lists
Awesome-Hacking-Resources 261 awesome-hacker-search-engines 545 bluetoolkit 69 awesome-mcp-security 119 awesome-vm-exploit 35 awesome-MLSecOps 190 awesome-uefi-security 233 awesome-cryptocurrency-security 50 awesome-iot-security-resource 204
Exploit Categories
Uncategorized 683 Table of Contents 306 Threat Modeling 287 Vulnerability Writeup 256 Blogs 213 Blogs :newspaper: 66 Talks :speaker: 60 Install 59 MlSecOps pipeline 57 Open Source Security Tools 53 TODO List 50 📕 Articles, X threads and Blog Posts 49 Tools :hammer: 38 Qemu 37 Repositories 34 Firmware 26 🧑‍🚀 Tools and code 25 Community Resources 23 💾 MCP Security Servers 20 Blogs and Publications 19