sickcodes/no-sandbox
No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/
#0day #bug #bugbounty #chrome #chromium #exploit #rce #research
Stars: 91 Issues: 2 Forks: 8
https://github.com/sickcodes/no-sandbox
No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/
#0day #bug #bugbounty #chrome #chromium #exploit #rce #research
Stars: 91 Issues: 2 Forks: 8
https://github.com/sickcodes/no-sandbox
no-sandbox
No Sandbox
No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/
April 19, 2021
Cr4sh/KernelForge
A library to develop kernel level Windows payloads for post HVCI era
Language: C++
#windows #library #kernel #exploit #hypervisor #vbs #rookit #hvci
Stars: 105 Issues: 0 Forks: 21
https://github.com/Cr4sh/KernelForge
A library to develop kernel level Windows payloads for post HVCI era
Language: C++
#windows #library #kernel #exploit #hypervisor #vbs #rookit #hvci
Stars: 105 Issues: 0 Forks: 21
https://github.com/Cr4sh/KernelForge
GitHub
GitHub - Cr4sh/KernelForge: A library to develop kernel level Windows payloads for post HVCI era
A library to develop kernel level Windows payloads for post HVCI era - Cr4sh/KernelForge
May 23, 2021
stong/CVE-2020-15368
How to exploit a vulnerable windows driver. Exploit for AsrDrv104.sys
Language: C++
#windows #kernel #exploit
Stars: 119 Issues: 0 Forks: 11
https://github.com/stong/CVE-2020-15368
How to exploit a vulnerable windows driver. Exploit for AsrDrv104.sys
Language: C++
#windows #kernel #exploit
Stars: 119 Issues: 0 Forks: 11
https://github.com/stong/CVE-2020-15368
GitHub
GitHub - stong/CVE-2020-15368: CVE-2020-15368, aka "How to exploit a vulnerable driver"
CVE-2020-15368, aka "How to exploit a vulnerable driver" - stong/CVE-2020-15368
July 2, 2021
HuskyHacks/ShadowSteal
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
Language: Nim
#windows #nim #exploit #exploit_development
Stars: 112 Issues: 0 Forks: 25
https://github.com/HuskyHacks/ShadowSteal
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
Language: Nim
#windows #nim #exploit #exploit_development
Stars: 112 Issues: 0 Forks: 25
https://github.com/HuskyHacks/ShadowSteal
GitHub
GitHub - HuskyHacks/ShadowSteal: Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation - HuskyHacks/ShadowSteal
July 23, 2021
nerdsinspace/nocom-explanation
block game military grade radar
#minecraft #exploit #radar #exploitation #2b2t #papermc #nocomment #nocom
Stars: 113 Issues: 3 Forks: 6
https://github.com/nerdsinspace/nocom-explanation
block game military grade radar
#minecraft #exploit #radar #exploitation #2b2t #papermc #nocomment #nocom
Stars: 113 Issues: 3 Forks: 6
https://github.com/nerdsinspace/nocom-explanation
GitHub
GitHub - nerdsinspace/nocom-explanation: block game military grade radar
block game military grade radar. Contribute to nerdsinspace/nocom-explanation development by creating an account on GitHub.
July 27, 2021
assetnote/batchql
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
Language: Python
#batch #exploit #graphql
Stars: 113 Issues: 0 Forks: 6
https://github.com/assetnote/batchql
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
Language: Python
#batch #exploit #graphql
Stars: 113 Issues: 0 Forks: 6
https://github.com/assetnote/batchql
GitHub
GitHub - assetnote/batchql: GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations - assetnote/batchql
September 3, 2021
Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
Language: Java
#bugbounttips #bugbounty #bugbounty_writeups #cve #cve_2021_44228 #cybersecurity #exploit #hacking #log4j #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 191 Issues: 0 Forks: 38
https://github.com/Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
GitHub
GitHub - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words: π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
π±βπ» βοΈ π€¬ CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks - Puliczek/CVE-2021-44228-PoC-log4j-bypass-words
β€1
December 14, 2021
DavidBuchanan314/ambiguous-png-packer
Craft PNG files that appear completely different in Apple software
Language: Python
#apple #exploit #idot #png #png_encoder
Stars: 389 Issues: 1 Forks: 8
https://github.com/DavidBuchanan314/ambiguous-png-packer
Craft PNG files that appear completely different in Apple software
Language: Python
#apple #exploit #idot #png #png_encoder
Stars: 389 Issues: 1 Forks: 8
https://github.com/DavidBuchanan314/ambiguous-png-packer
GitHub
GitHub - DavidBuchanan314/ambiguous-png-packer: Craft PNG files that appear completely different in Apple software [NOW PATCHED]
Craft PNG files that appear completely different in Apple software [NOW PATCHED] - DavidBuchanan314/ambiguous-png-packer
December 18, 2021
mufeedvh/moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. π»π
Language: Rust
#cve #exploit #exploitation #infosec #infosectools #linux #privilege_escalation #red_teaming #redteam #redteam_tools #security #security_tools
Stars: 279 Issues: 0 Forks: 23
https://github.com/mufeedvh/moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. π»π
Language: Rust
#cve #exploit #exploitation #infosec #infosectools #linux #privilege_escalation #red_teaming #redteam #redteam_tools #security #security_tools
Stars: 279 Issues: 0 Forks: 23
https://github.com/mufeedvh/moonwalk
GitHub
GitHub - mufeedvh/moonwalk: Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. - mufeedvh/moonwalk
December 23, 2021
Puliczek/awesome-list-of-secrets-in-environment-variables
π¦π Awesome list of secrets in environment variables π₯οΈ
#blue_team #bugbounttips #bugbounty #cve_2021_44228 #cybersecurity #exploit #log4j #pentesting #poc #red_team #security #security_writeups #writeups
Stars: 139 Issues: 0 Forks: 9
https://github.com/Puliczek/awesome-list-of-secrets-in-environment-variables
π¦π Awesome list of secrets in environment variables π₯οΈ
#blue_team #bugbounttips #bugbounty #cve_2021_44228 #cybersecurity #exploit #log4j #pentesting #poc #red_team #security #security_writeups #writeups
Stars: 139 Issues: 0 Forks: 9
https://github.com/Puliczek/awesome-list-of-secrets-in-environment-variables
GitHub
GitHub - Puliczek/awesome-list-of-secrets-in-environment-variables: π¦π Awesome list of secrets in environment variables π₯οΈ
π¦π Awesome list of secrets in environment variables π₯οΈ - Puliczek/awesome-list-of-secrets-in-environment-variables
π5π1
January 1, 2022
Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Language: HTML
#bugbounty #bugbounty_writeups #bugbountytips #cve #cve_2022_0337 #cybersecurity #exploit #hacking #payload #pentest #pentesting #red_team #security #security_writeups #writeups
Stars: 131 Issues: 0 Forks: 22
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
GitHub
GitHub - Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Operaβ¦
π© π€π» [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337 - Puliczek/CVE-2022-0337-PoC-Google-Chrom...
π2
March 21, 2022
AgainstTheWest/NginxDay
Nginx 18.1 04/09/22 zero-day repo
#exploit #ldap_authentication #nginx #nginxday #zero_day
Stars: 159 Issues: 1 Forks: 17
https://github.com/AgainstTheWest/NginxDay
Nginx 18.1 04/09/22 zero-day repo
#exploit #ldap_authentication #nginx #nginxday #zero_day
Stars: 159 Issues: 1 Forks: 17
https://github.com/AgainstTheWest/NginxDay
GitHub
GitHub - AgainstTheWest/NginxDay: Nginx 18.1 04/09/22 zero-day repo
Nginx 18.1 04/09/22 zero-day repo. Contribute to AgainstTheWest/NginxDay development by creating an account on GitHub.
April 11, 2022
firefart/stunner
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
Language: Go
#exploit #misconfiguration #security #stun #testing #turn #webrtc
Stars: 169 Issues: 0 Forks: 14
https://github.com/firefart/stunner
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
Language: Go
#exploit #misconfiguration #security #stun #testing #turn #webrtc
Stars: 169 Issues: 0 Forks: 14
https://github.com/firefart/stunner
GitHub
GitHub - firefart/stunner: Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. - firefart/stunner
April 21, 2022
jbaines-r7/through_the_wire
CVE-2022-26134 Proof of Concept
Language: Python
#cve_2022_26134 #exploit #poc
Stars: 109 Issues: 0 Forks: 33
https://github.com/jbaines-r7/through_the_wire
CVE-2022-26134 Proof of Concept
Language: Python
#cve_2022_26134 #exploit #poc
Stars: 109 Issues: 0 Forks: 33
https://github.com/jbaines-r7/through_the_wire
GitHub
GitHub - jbaines-r7/through_the_wire: CVE-2022-26134 Proof of Concept
CVE-2022-26134 Proof of Concept. Contribute to jbaines-r7/through_the_wire development by creating an account on GitHub.
π1
June 10, 2022
edoardottt/awesome-hacker-search-engines
A list of search engines useful during Penetration testing, vulnerability assessments, red team operations, bug bounty and more
#awesome #awesome_list #awesome_lists #bugbounty #dns #domain #exploit #hacking #hacking_tools #osint #osint_tool #redteam #redteaming #search_engine #security #security_tools #url #vulnerabilities #vulnerability #wifi_network
Stars: 412 Issues: 0 Forks: 20
https://github.com/edoardottt/awesome-hacker-search-engines
A list of search engines useful during Penetration testing, vulnerability assessments, red team operations, bug bounty and more
#awesome #awesome_list #awesome_lists #bugbounty #dns #domain #exploit #hacking #hacking_tools #osint #osint_tool #redteam #redteaming #search_engine #security #security_tools #url #vulnerabilities #vulnerability #wifi_network
Stars: 412 Issues: 0 Forks: 20
https://github.com/edoardottt/awesome-hacker-search-engines
GitHub
GitHub - edoardottt/awesome-hacker-search-engines: A curated list of awesome search engines useful during Penetration testing,β¦
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more - edoardottt/awesome-hacker-search-engines
π6
June 27, 2022
b1tg/CVE-2023-38831-winrar-exploit
CVE-2023-38831 winrar exploit generator
Language: Python
#0day #cve #exploit
Stars: 294 Issues: 0 Forks: 45
https://github.com/b1tg/CVE-2023-38831-winrar-exploit
CVE-2023-38831 winrar exploit generator
Language: Python
#0day #cve #exploit
Stars: 294 Issues: 0 Forks: 45
https://github.com/b1tg/CVE-2023-38831-winrar-exploit
GitHub
GitHub - b1tg/CVE-2023-38831-winrar-exploit: CVE-2023-38831 winrar exploit generator
CVE-2023-38831 winrar exploit generator. Contribute to b1tg/CVE-2023-38831-winrar-exploit development by creating an account on GitHub.
β€βπ₯5π±4π₯1
August 29, 2023
Cr4sh/SmmBackdoorNg
Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
Language: C
#backdoor #boot #exploit #firmware #intel #malware #smm #uefi
Stars: 118 Issues: 0 Forks: 18
https://github.com/Cr4sh/SmmBackdoorNg
Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
Language: C
#backdoor #boot #exploit #firmware #intel #malware #smm #uefi
Stars: 118 Issues: 0 Forks: 18
https://github.com/Cr4sh/SmmBackdoorNg
GitHub
GitHub - Cr4sh/SmmBackdoorNg: Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks - Cr4sh/SmmBackdoorNg
β€1π1
October 11, 2023
actuator/Android-Security-Exploits-YouTube-Curriculum
πA curated list of modern Android exploitation conference talks.
#android #blackhat #defcon #exploit #hacking #nullcon #reverse_engineering #security #shmoocon #strange_loop_conference #troopers24
Stars: 229 Issues: 0 Forks: 18
https://github.com/actuator/Android-Security-Exploits-YouTube-Curriculum
πA curated list of modern Android exploitation conference talks.
#android #blackhat #defcon #exploit #hacking #nullcon #reverse_engineering #security #shmoocon #strange_loop_conference #troopers24
Stars: 229 Issues: 0 Forks: 18
https://github.com/actuator/Android-Security-Exploits-YouTube-Curriculum
GitHub
GitHub - actuator/Android-Security-Exploits-YouTube-Curriculum: πA curated list of modern Android exploitation conference talks.
πA curated list of modern Android exploitation conference talks. - actuator/Android-Security-Exploits-YouTube-Curriculum
November 10, 2023
xaitax/CVE-2024-6387_Check
CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
Language: Python
#cve_2024_6387 #exploit #pentesting #python3 #redteam
Stars: 343 Issues: 0 Forks: 70
https://github.com/xaitax/CVE-2024-6387_Check
CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
Language: Python
#cve_2024_6387 #exploit #pentesting #python3 #redteam
Stars: 343 Issues: 0 Forks: 70
https://github.com/xaitax/CVE-2024-6387_Check
GitHub
GitHub - xaitax/CVE-2024-6387_Check: CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers runningβ¦
CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH - xaitax/CVE-2024-6387_Check
July 7, 2024