Exploit
Exploit refers to a piece of code or technique that takes advantage of a security vulnerability in a system, application, or network to cause unintended behavior. Exploits can be used by attackers to gain unauthorized access, escalate privileges, execute arbitrary code, or cause a denial of service. This topic covers the various types of exploits, such as zero-day exploits, remote code execution, and privilege escalation. It also explores the lifecycle of an exploit, from discovery and development to deployment and mitigation, and highlights the importance of vulnerability management and patching in preventing exploits.
- GitHub: https://github.com/topics/exploit
- Wikipedia: https://en.wikipedia.org/wiki/Exploit_(computer_security)
- Created by: The cybersecurity community
- Related Topics: hacking, cybersecurity, penetration-testing, vulnerability-assessment,
- Aliases: exploits, vulnerability-exploit,
- Last updated: 2026-06-29 00:10:31 UTC
- JSON Representation
https://github.com/francescodisalesgithub/downloadsploit
QuickScript to download exploits from exploitdb
download download-exploits exploit exploitdb exploits hacking hacking-tool metasploit quickscript searchsploit
Last synced: 22 Mar 2025
https://github.com/vandycknick/gitlab-cve-2020-10977
GitLab Arbitrary File Read Exploit
cve-2020-10977 exploit gitlab lfi python rce
Last synced: 17 May 2026
https://github.com/whokilleddb/CVE-2019-15107
CVE-2019-15107 Webmin Exploit in C
Last synced: 10 Mar 2025
https://github.com/ytisf/snmplicity
the Swiss Army Knife of the SNMP world, but, it's coded in Python, not made of stainless steel!
cisco code-execution exploit redteam-tools redteaming snmp
Last synced: 15 Oct 2025
https://github.com/a0zhar/ps4payloadloader
This repository will be maintained by me. Super simple to use! It has everything needed to build Your own MiraLoader or Payload Launcher refrenced in the PS4JB Repo by Sleirsgoevy
c exploit freebsd playstation4 ps4 ps4-jailbreak ps4-payload ps4exploit ps4jb ps4payload
Last synced: 22 May 2026
https://github.com/hackingyseguridad/CVE-2021-4034
CVE-2021-4034, exploit para escalado de privilegios en SO Linux a root
cve elevar exploit linux privilegios root vuln
Last synced: 10 Mar 2025
https://github.com/crypticq/WP-killer
vulnerability scanner for wordpress
bugbounty cybersecurity exploit exploitation hacking penetration-testing vulnerability-scanners wordpress
Last synced: 10 Mar 2025
https://github.com/r-teamdev/rcheat-injector
exploit game-haking injector lua rcheat-injector roblox roblox-lua roblox-script scripts
Last synced: 14 Mar 2026
https://github.com/zeyad-azima/cve-2022-22733
Apache ShardingSphere ElasticJob-UI Privilege Escalation & RCE Exploit
apache apache2 exploit java shardingsphere vulnerability
Last synced: 04 Apr 2025
https://github.com/examplest/uac-bypass-fud
UAC bypass, Elevate, Persistence methods
administrator-privileges bypass-uac dll-hijacking exploit fodhelperbypass fud hacking uac-bypass uacme user-account-control windows
Last synced: 11 Apr 2025
https://github.com/bear102/mastercrack
A repository of Master Lock Combination Lock cracking scripts
Last synced: 19 Jun 2026
https://github.com/drdataye/drxploit
DrXploit is a powerful and open-source penetration testing and exploitation tool for web applications. This tool is designed to automate the process of discovering and exploiting vulnerabilities, saving time and effort for security researchers.
bugbounty exploit exploit-db hacking hacking-tool hackweb python3 scanning
Last synced: 08 Jul 2025
https://github.com/kaanaryoverflow/ipfire-2-25-auth-rce
ipfire 2.25 authenticated remote code execution
Last synced: 19 Oct 2025
https://github.com/piotrbania/smb2_exploit_release_ms09-050
smb2 remote exploit for MS09-050
exploit exploitation hacking samba smb2 windows
Last synced: 16 May 2026
https://github.com/lynk4/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit metasploitable metasploitable-2 metasploitable-3 python vsftpd-exploit
Last synced: 21 Jun 2026
https://github.com/hunthubspace/cve-2024-3105-poc
A PoC Exploit for CVE-2024-3105 - The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress Remote Code Execution (RCE)
bugbounty cve cve-2024-3105 ethical-hacking exploit penetration-testing web
Last synced: 28 Jan 2026
https://github.com/threadlinee/metadata-extractor
Metadata Extractor Scans images for any hidden code behind it.
educational educational-purposes exploit github hacking-tool image lua python safe spyware-blocking useful viral
Last synced: 09 May 2026
https://github.com/madexploits/alfa-rce
ALFA SHELL RCE, EXPLOIT
alfa-rce alfa-shell alfa-shell-exploit cgi exploit web-shells webshell
Last synced: 25 Oct 2025
https://github.com/whokilleddb/cve-2019-15107
CVE-2019-15107 Webmin Exploit in C
Last synced: 04 Apr 2026
https://gitlab.com/whoatemybutter/letterbomb
✉💣 LetterBomb: A fork of the classic Wii hacking tool from fail0verflow
exploit fail0verflow letterbomb python wii
Last synced: 15 Mar 2026
https://github.com/codeb0ss/cve-2024-29824-poc
Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)
codeb0ss cve cve-2024-29824 cve-2024-29824-exp cve-2024-29824-exploit cve-2024-29824-poc exploit ivanti ivanti-rce rce remote-code-execution uncodeboss
Last synced: 22 Jun 2025
https://github.com/gill-singh-a/docker-api-remote-root-shell-exploit
A Simple Python Program that uses Docker Module to communicate with Docker API and gets a Remote Root Shell on the Target Device
Last synced: 03 Feb 2026
https://github.com/codeb0ss/cve-2024-1698-poc
Mass Exploit CVE-2024-1698 - Wordpress NotificationX <= 2.8.2 - SQL Injection
codeb0ss codeboss cve-2024 cve-2024-1698 cve-2024-1698-exp cve-2024-1698-poc exploit wordpress
Last synced: 03 May 2025
https://github.com/jenderal92/chamilo-cve-2023-34960
Wordpress CVE-2023-34960
cve-2023-34960 exploit exploit-wordpress vulnerability wordpress wordpress-vulnerability
Last synced: 22 Jun 2025
https://github.com/mrxiaom/banclickwhenusingitem
Minecraft Trident dupe bug fixer | 修复网络包状态不同步导致刷三叉戟漏洞
bugfix duplicate-detection exploit minecraft paper-plugin trident
Last synced: 18 Feb 2026
https://github.com/franckferman/cauchemar-apprendre_le_pwn
Référentiel exhaustif pour acquérir une compréhension approfondie des fondamentaux de l'exploitation de binaires. Fruit d'une démarche analytique rigoureuse, ce guide offre une pédagogie structurée, avec explications détaillées et exemples concrets, pour maîtriser pas à pas l'exploitation de binaires.
apprendre apprendre-les-bases apprendre-pwn binary-exploitation exploit exploit-development exploitation francais francaise france gdb heap-overflow learning pwn pwn-college pwn-course-practice pwndbg pwning reverse-engineering stack-overflow
Last synced: 19 Jan 2026
https://github.com/arpsyndicate/cnnvd-scores
适用于 CNNVD 的 VEDAS 分数聚合器
cnnvd exploit exploit-maturity vedas vulnerability
Last synced: 30 Jan 2026
https://github.com/arpsyndicate/euvd-scores
VEDAS Score Aggregator for EUVDs
euvd exploit exploit-maturity vedas vulnerability
Last synced: 25 Feb 2026
https://github.com/al1ex/cve-2021-3317
CVE-2021-3317
cve-2021-3317 exploit klogserver
Last synced: 01 Feb 2026
https://github.com/jenderal92/git-dump
This script is a tool to recursively download the contents of the '.git' directory from a website. Using Python and libraries like 'requests' and 'BeautifulSoup', this script examines the directory structure, downloads files, and identifies SHA-1 hashes within Git files.
exploit git git-download git-dumper git-dumper-python git-exposed git-vulnerability python python-git-dumper vulnerability vulnerability-git
Last synced: 09 Feb 2026
https://github.com/kvba0000/trackmania-xss-payloads
[POC] Repo of XSS payloads you can try when using Trackmania 1's playerpage
exploit game maniaplanet poc proof-of-concept security trackmania trackmania-api trackmania-nations trackmania-united xss xss-vulnerability
Last synced: 06 May 2025
https://github.com/inmymine7/mephisto
A comprehensive WordPress vulnerability scanner and exploitation framework for authorized penetration testing. This tool automatically detects and exploits multiple WordPress security vulnerabilities (CVEs) to help security professionals identify and patch weaknesses.
arbitrary-file-upload auto-upload-shell bugbounty cve-scanning cve-wordpress cves exploit exploiter hacktoolkit penetration-testing penetration-testing-tools scanner wordpress-auto-exploiter wordpress-cve wordpress-plugin
Last synced: 24 Jun 2026
https://github.com/9dl/websploit
Advanced reconnaissance tool for identifying web vulnerabilities through crowd-sourced data collection
cybersecurity exploit poc proof-of-concept vulnerable
Last synced: 20 Mar 2026
https://github.com/ashtondavies/lomoh
Disable admin-forced extensions on managed Chromebooks using the locked mode feature
chromebook chromeos exploit hack unblock
Last synced: 16 May 2025
https://github.com/sum-catnip/foundry-rnghax
foundryvtt admin authentication bypass POC exploit
authentication-bypass exploit foundry-vtt poc security
Last synced: 03 Apr 2026
https://github.com/lucabarile/zdi-can-16857
Exploit and report for CVE-2023-32163
0-day 0day bugbounty cve-2023-32163 disclosure elevation-of-privilege exploit local-privilege-escalation logical-vulnerability lpe poc privilege-escalation proof-of-concept vulnerability wacom wacom-driver wacom-vulnerability write-up writeups zdi-can-16857
Last synced: 19 Mar 2026
https://github.com/krishpranav/exploitdb
Golang tool to search exploits from exploitdb
database db ethical exploit exploitation exploitdb go golang hacking information license mit mongodb open-source osint sqlite
Last synced: 30 Apr 2026
https://github.com/3qnrpdwd/juststone
[ JustStoneTransferProtocol&Backdoor ] This project stems from my interest in protocols and security, leading to the creation of a small backdoor and a proprietary protocol.
api backdoor eternalblue exploit protocol rust secure security socket socket-io
Last synced: 25 Apr 2026
https://github.com/xerosic/leidenfrost
Local privilege escalation on Windows by abusing CMSTP to bypass User Access Control (UAC)
exploit lpe privilege-escalation uac uac-bypass windows
Last synced: 27 Apr 2026
https://github.com/p1ckzi/nanocmshell
authenticated remote code execution via shell upload.
exploit file-upload nanocms nanocmshell php php-reverse-shell rce
Last synced: 10 May 2026
https://github.com/kernelerr/vlc-cve-2008-4654-exploit
An EXP could run on Windows x64 against CVE-2008-4654.
cve exploit out-of-memory vlc vlc-media-player
Last synced: 16 May 2026
https://github.com/dubniczky/kernel-exploits
Kernel exploits consisting mostly of privilege escalation attacks against core components of Linux distribtions
cve exploit linux linux-exploits linux-kernel
Last synced: 27 Apr 2026
https://github.com/unicordev/exploit-cve-2025-29927
Exploit for CVE-2025-29927 (Next.js) - Authorization Bypass
authorization bypass exploit middleware nextjs python python3
Last synced: 29 Apr 2026
https://github.com/p1ckzi/cve-2022-35513
CVE-2022-35513 | blink1-pass-decrypt
blink1-pass-decrypt blink1control2 cve cve-2022-35513 exploit
Last synced: 25 Mar 2025
https://github.com/sarperavci/exploitme
A collection of containerized security vulnerabilities including privilege escalation CVEs and SUID exploits for hands-on penetration testing practice.
ctf cybersecurity docker exploit penetration-testing privilege-escalation security security-training suid vagrant vulnerable
Last synced: 08 Jul 2025
https://github.com/asmroyal/chlorius
chlorius tool from github
ddos ddos-attacks exploit multitool multitoolhacking payload xss
Last synced: 13 Jun 2025
https://github.com/randomrobbiebf/cve-2024-0679
ColorMag <= 3.1.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation
cve-2024-0679 exploit wordpress
Last synced: 21 Apr 2026
https://github.com/muhammadwaseem29/cve-2025-1661
HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion (LFI)
bugbounty cve-2025-1661 cyber-security exploit
Last synced: 11 Jan 2026
https://github.com/hyeonjun17/cve-2022-2590-analysis
Dirty COW restricted to shmem in linux kernel
1-day analysis cve-2022-2590 dirty-cow exploit linux linux-kernel memory-management race-condition security shared-memory userfaultfd vulnerability
Last synced: 08 Oct 2025
https://github.com/l4rm4nd/poc-cve-2024-39924
PoC for CVE-2024-39924
authorization-bypass bitwarden-rs ctf cve-2024-39924 docker exploit hacking lab vaultwarden
Last synced: 25 Aug 2025
https://github.com/usdtc/pdf-fud-exploit
A meticulous scrutiny of the Exploit PDFs innards exposes a network of malevolence, unveiling both the nefarious hyperlink and the URL that precipitates
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 16 Jun 2025
https://github.com/nxroot/natxploit
Take control of other devices using Reverse NAT Traversal
bypass exploit hacking hacking-tool payload-generator remote-access reverse-shell
Last synced: 26 Jan 2026
https://github.com/ramona-flower/nemotron-infinite-credit
abuse ai api api-abuse chatgpt claude exploit javascript nemotron nvidia openai tampermonkey
Last synced: 15 Apr 2025
https://github.com/og-mason/javascript-memory-exploitation
Exploit :)
arm64 blue-team ethical-hacking exploit explorer forensics hacking-tool incident-response infosec javascript m1-mac oob open-source open-source-security poc privacy-tools python3 red-team shellcode threat-detection
Last synced: 06 May 2026
https://github.com/momenbasel/naggets
old CTF I've made sharing it publicly.
ctf ctf-challenges ctf-platform ctf-playground cve exploit nagios
Last synced: 03 Aug 2025
https://github.com/cybersecurity-dev/awesome-exploit-development
Awesome Exploit Development
awesome awesome-list awesome-lists exploit exploit-development exploitation
Last synced: 02 Aug 2025
https://github.com/asmroyal/0x001829-b
0x001829-B is exploit tool for web servers & for home ip's
csharp csharp-code exploit exploitation exploitation-framework exploits net payload payloads
Last synced: 15 May 2025
https://github.com/whokilleddb/cve-2019-17662
Exploit for CVE-2019-17662 (ThinVNC 1.0b1)
cve cve-2019-17662 exploit poc thinvnc
Last synced: 31 Jul 2025
https://github.com/langriklol/cve-2020-15227
CVE-2020-15227 exploit
exploit rce security vulnerability
Last synced: 29 Jul 2025
https://github.com/vaibhavpandeyvpz/dtp-exploit-poc
Simple and single purpose PoC app built using React Native to demonstrate PII leak vulnerability in Delhi Traffic Police's notice payment website.
exploit information leak privacy security vulnerability
Last synced: 29 Jul 2025
https://github.com/kdandy/pentest_tools
WebTest Tools
blueteam cybersecurity exploit pentest pentesting redteam security-tools shell tools website
Last synced: 29 Jul 2025
https://github.com/prvvv/chromeforensics
Different code samples for Chrome browser analysis & post exploitation
chrome chrome-devtools exploit forensic forensics forensics-tools hacking password post-exploitation
Last synced: 03 Jan 2026
https://github.com/upcraftlp/upsidedown
Minecraft mod that focuses on the looks of the Minecraft client.
client client-side cosmetic cosmetics exploit exploitation exploits forge forge-mod minecraft minecraft-client minecraft-forge minecraft-mod minecraftforge
Last synced: 07 Apr 2025
https://github.com/sertrafurr/deltarune-malware-poc
Wanted to make this i was bored
deltarune exploit malware poc undertale undertalemodtool virus
Last synced: 01 Jul 2025
https://github.com/sertrafurr/nemotron-infinite-credit
abuse ai api api-abuse chatgpt claude exploit javascript nemotron nvidia openai tampermonkey
Last synced: 18 Apr 2026
https://github.com/pandh4cker/pandagik
Image Magick Exploit for CVE-2016–3714
exploit imagemagick python3 rce
Last synced: 28 May 2026
https://github.com/ramona-flower/discord-video-quest-skipper
This script allows you to make video playback on Discord almost instant by speeding up the playback rate by over 19x faster. Ideal for those who want to skip through videos quickly without wasting time, this script ensures your Discord video quests are completed almost immediately!
betterdiscord discord exploit glitch javascript js quest script vencord
Last synced: 24 Mar 2025
https://github.com/waived/cve-2024-3393
PAN-OS: Firewall Denial-of-Service exploit via malicious DNS query
cve-2024-3393 denial-of-service dns-attack exploit palo-alto-networks pan-os proof-of-concept python3
Last synced: 13 Jul 2025
https://github.com/chikof/discord-opera
OperaGX really messed up with this one
discord discord-opera educational exploit opera
Last synced: 31 Mar 2025
https://github.com/mtgsoftworks/apce
PowerShell Code Execution Builder Fully UnDetectable (FUD) Exploit
exploit fud-crypter powershell python3
Last synced: 21 Apr 2026
https://github.com/evantesecond/krypton
cool tools for school i guess, use https://kryptontools.glitch.me/ if .pages.dev is blocked
bypass chrome chromebook evan exploit exploits games hack krypton school school-chromebook school-hacks school-tools
Last synced: 12 Mar 2025
https://github.com/p1ckzi/cve-2009-2265
cf8-upload.py | CVE-2009-2265
cf8-upload cve cve-2009-2265 exploit hacking pentesting-tools
Last synced: 31 Mar 2025
https://github.com/ihsandevs/simplewebshell-php
The Simple Web Shell is a lightweight and user-friendly web-based interface for controlling a website using a single PHP file.
ethical-hacking ethical-hacking-tools exploit hacking php remote-code-execution shell webshell webshells
Last synced: 03 May 2026
https://github.com/Fadavvi/CVE-2018-17431-PoC
Proof of consept for CVE-2018-17431
comodo cve cve-2018-17431 exploit poc proof-of-concept rce remote-code-execution
Last synced: 10 Mar 2025
https://github.com/franckferman/cve_2026_24061
GNU InetUtils telnetd - Unauthenticated Remote Root via NEW-ENVIRON Variable Injection.
authentication-bypass cve cve-2026-24061 cves exploit exploitation exploiting inetutils redteam root-exploit telnet telnet-exploit telnet-hacking telnetd telnetd-rce vulnerability vulnerability-detection vulnerability-research vulnerability-scanner vulnerability-scanners
Last synced: 23 Apr 2026
https://github.com/piotrbania/vmware_exploit_pack_cve-2009-1244
vmware cloudburst exploit CVE-2009-1244
exploit guest-to-host hacking hacktro vmware workstation
Last synced: 14 Mar 2025
https://github.com/the-wagonization/the-wagon-site
Repository for The Wagon Site's code
bookmarklets chrome chrome-os chrome-os-exploits chros exploit exploits games proxies proxy school school-exploit school-exploits windows windows-10 windows-10-exploit windows-10-exploits windows-11 windows-11-exploit windows-11-exploits
Last synced: 25 Oct 2025
https://github.com/kissssu/ftp-exploit-vsftpd-2.3.4-backdoor
Python script for exploiting a specific vulnerability in vsFTPd 2.3.4.
Last synced: 28 Oct 2025
https://github.com/cyn-ically/nemotron-infinite-credit
abuse ai api api-abuse chatgpt claude exploit javascript nemotron nvidia openai tampermonkey
Last synced: 11 Jun 2025
https://github.com/s1lkys/cve-2021-40101
Survey XSS combined with CSRF leads to Admin Account Takeover in Concrete5 8.5.4
concrete5 cve-2021-40101 exploit xss
Last synced: 06 Jan 2026
https://github.com/gallopsled/gallopsled.github.io
Pwntools Blog
assembly blog capture-the-flag ctf ctf-framework defcon exploit exploit-development exploit-exercises exploitation pwntools python python3
Last synced: 12 Apr 2026
https://github.com/anshvaid4/follinatest
Reference of code has been taken from https://github.com/JohnHammond/msdt-follina/blob/main/follina.py. I have given the explanation of the code and made the code a bit simplified.
Last synced: 27 Mar 2025
https://github.com/codingchili/cve-2020-14368
Interactive RCE exploit demo for Eclipse CHE
eclipse-che exploit proof-of-concept vulnerability
Last synced: 21 Jan 2026
https://github.com/m3ssap0/struts2_cve-2017-5638
This is a sort of Java porting of the Python exploit at: https://www.exploit-db.com/exploits/41570/.
cve-2017-5638 exploit security security-tools struts2 vulnerability vulnerability-scanners
Last synced: 10 Jun 2026
https://github.com/ahmed-alnassif/pwnxss
PwnXSS: Vulnerability (XSS) scanner exploit
beautifulsoup4 exploit fake-useragent pwnxss python3 requests scanner security security-tools threads vulnerability xss xss-scanner
Last synced: 29 May 2026
https://github.com/enty8080/zutto-dekiru
Zutto Dekiru encoder in HatSploit
encoder exploit hacking malware payload penetration-testing pentest python rat remote-control reverse-engineering shellcode virus
Last synced: 20 May 2026
https://github.com/mar-ket-vector/metamorpheus
A metamorphic shellcode obfuscator capable of generating more unique shellcodes than there are atoms in the OBSERVABLE UNIVERSE and designed for shellcodes/implants that need to run in W^X memory.
av-evasion backdoor c2 code-mutation exploit implant metamorphic obfuscator polymorphic shellcode
Last synced: 13 May 2025
https://github.com/s1lkys/cve-2021-24884
If an authenticated user who is able to edit Wordpress PHP code in any kind, clicks a malicious link, PHP code can be edited through XSS in Formidable Forms 4.09.04.
exploit formidable wordpress xss
Last synced: 16 Oct 2025
https://github.com/hunthubspace/torwatch
TorWatch is a powerful bash script for monitoring the availability of websites through the Tor network. It manages IP address rotation, blocks IP addresses if the site is inaccessible, and logs activities for tracking events.
bash-scripting bugbounty exploit penetration-testing tor web-penetration-testing
Last synced: 23 Sep 2025
https://github.com/mauricelambert/pywcgishell
This package implement a WebShell for CGI and WSGI server.
cgi-script exploit pypi-package python3 web-attacks webshell wsgi-server
Last synced: 08 Jun 2026
