FOFA Google Plugin 是一款基于 FOFA API 的 Chrome 浏览器插件，能够自动识别当前访问网站的域名或 IP，并实时查询其资产信息，如开放端口、服务类型等。该插件主要面向安全研究员、红队渗透人员、CTF 选手以及网络测绘从业者，用于快速识别目标的边界资产和潜在攻击面。 - Maikefee/Fofa_Google_Plugin

The RCE (Remote Code Execution) system lets users write and run code safely in a browser. It uses Docker to execute code in isolated environments with time and memory limits. The system supports te...

Proof-of-Concept exploit for CVE-2025-32429 (SQL Injection in PHP PDO prepared statements) – for educational and security research purposes only - amir-othman/CVE-2025-32429

This is a Pre-Authentication Remote Code Execution (RCE) exploit chain targeting SysAid On-Premise servers running on Windows. - 0xgh057r3c0n/SysAid-PreAuth-RCE-Chain

Sharepoint ToolPane - PoC. Contribute to unk9vvn/sharepoint-toolpane development by creating an account on GitHub.

RARLAB WinRAR Directory Traversal Remote Code Execution - mulwareX/CVE-2025-6218-POC

Detect CVE-2025-54313 eslint-config-prettier supply chain attack IOCs on Windows - ShinP451/scavenger_scanner

Proof of concept for exploitation of the vulnerability described in CVE-2025-8220, which concerns the possibility of SQL Injection during the password recovery page load in the Engeman Web software...

Proof of concept for exploitation of the vulnerability described in CVE-2025-8220, which concerns the possibility of SQL Injection during the password recovery page load in the Engeman Web software...

CVE-2025-7404 exploit. Contribute to mind2hex/CVE-2025-7404-CalibreWeb-0.6.24-BlindCommandInjection development by creating an account on GitHub.

Linux CTF from VulnHub with a focus on enumeration, RCE, steganography, and privilege escalation to nested - malik027/Double-1

CVE-2025-53770 Mass Scanner. Contribute to 3a7/CVE-2025-53770 development by creating an account on GitHub.

适用于 Halo 的 HTML 代码注入插件. Contribute to Erzbir/halo-plugin-injector development by creating an account on GitHub.

fastjson反序列化漏洞分析测试项目. Contribute to rockmelodies/fastjson development by creating an account on GitHub.

这个仓库是一个专注于前端面试知识点的宝库，涵盖了各种重要的前端技术主题。无论你是正在准备面试，还是想要巩固和提升你的前端技术水平，这个仓库都将是你的理想选择。 仓库中包含了丰富的场景题，可以帮助你理解和掌握实际开发中可能遇到的各种问题和挑战。同时，我们还深入探讨了防抖节流、promise、闭包等高级主题，这些都是前端开发中常常见的技术难点，掌握它们将对你的技术提升有着重要的帮助。 此外，...

Exploit for CVE-2022-35411 — Unauthenticated RCE in rpc.py (<= 0.6.0) - CSpanias/rpc-rce.py

你说的对，但是GitHub是由Tom Preston-Werner、Chris Wanstrath、PJ Hyett和Scott Chacon自主研发的一款基于Git的代码托管平台。它发生在一个被称作互联网的全球信息网络中，在这里，被注册为GitHub用户的人将被授予创建和管理仓库的权限，导引开源软件和协作开发。你将扮演一位名为your_username的开发者，创建或加入项目，和他们一起编...

Authenticated File Upload to RCE via Mimetype Manipulation - Yucaerin/MagicAI

Penetration testing on DVWA: Brute-force, Command Injection, File Upload (RCE), SQL Injection, and XSS - Mihirk23/dvwa-penetration-testing

Apache Tomcat PUT JSP RCE - CVE-2025-24813 - Exploit & PoC - Shivshantp/CVE-2025-24813