The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States' National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security
#安全#serve as a reverse proxy to protect your web services from attacks and exploits.
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cm...
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
翻译 - 🌴Windows内核提权漏洞合集,附编译环境、演示GIF图、漏洞详情、可执行文件(Windows提权漏洞合集) http://kernelhub.ascotbe.com/
#夺旗赛 (CTF) 和网络安全资源#A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4...
CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
基于 docsify 快速部署 Awesome-POC 中的漏洞文档
面向网络安全从业者的知识文库🍃 (项目重构中~)
PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
翻译 - PwnKit 的 PoC:polkit 的 pkexec 中的本地权限提升漏洞 (CVE-2021-4034)
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
翻译 - 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java 漏洞利用 - 绕过单词阻塞补丁的技巧
CVE-2023-38831 winrar exploit generator
scalpel是一款命令行漏洞扫描工具,支持深度参数注入,拥有一个强大的数据解析和变异算法,可以将常见的数据格式(json, xml, form等)解析为树结构,然后根据poc中的规则,对树进行变异,包括对叶子节点和树结构 的变异。变异完成之后,将树结构还原为原始的数据格式。