TOP

all Top Top Top_Codeql TOP All bugbounty pentesting CVE-2022- POC Exp Things

star	updated_at	name	url	des
487	2025-03-03T18:54:11Z	CVE-2018-20250	https://github.com/WyAtu/CVE-2018-20250	exp for https://research.checkpoint.com/extracting-code-execution-from-winrar
157	2025-03-07T16:13:25Z	CVE-2025-21298	https://github.com/ynwarcs/CVE-2025-21298	Proof of concept & details for CVE-2025-21298
61	2024-08-12T19:53:29Z	CVE_2019_2025_EXP	https://github.com/jltxgcy/CVE_2019_2025_EXP
129	2025-03-08T22:44:13Z	CVE-2025-21333-POC	https://github.com/MrAle98/CVE-2025-21333-POC	Poc exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
119	2025-03-08T22:02:40Z	7-Zip-CVE-2025-0411-POC	https://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC	This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.
62	2025-03-06T06:58:05Z	CVE-2025-21420-PoC	https://github.com/Network-Sec/CVE-2025-21420-PoC	We found a way to DLL sideload with cleanmgr.exe
25	2021-05-29T18:38:32Z	CVE-2018-20250	https://github.com/QAX-A-Team/CVE-2018-20250	010 Editor template for ACE archive format & CVE-2018-2025[0-3]
34	2025-02-23T07:15:30Z	CVE-2025-0282	https://github.com/sfewer-r7/CVE-2025-0282	PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways
24	2025-03-03T14:19:23Z	CVE-2025-0108-PoC	https://github.com/iSee857/CVE-2025-0108-PoC	Palo Alto Networks PAN-OS 身份验证绕过漏洞批量检测脚本(CVE-2025-0108)
21	2024-10-24T14:43:31Z	CVE-2018-20250-WinRAR-ACE	https://github.com/easis/CVE-2018-20250-WinRAR-ACE	Proof of concept code in C# to exploit the WinRAR ACE file extraction path (CVE-2018-20250).
22	2025-02-24T13:42:53Z	CVE-2025-0282	https://github.com/watchtowrlabs/CVE-2025-0282	Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
42	2025-02-24T21:55:51Z	CVE-2025-0282-Ivanti-exploit	https://github.com/absholi7ly/CVE-2025-0282-Ivanti-exploit	CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overflow exploit.
34	2025-03-06T10:51:04Z	CVE-2025-24016	https://github.com/0xjessie21/CVE-2025-24016	CVE-2025-24016: Wazuh Unsafe Deserialization Remote Code Execution (RCE)
27	2025-03-04T04:01:00Z	CVE-2025-24016	https://github.com/MuhammadWaseem29/CVE-2025-24016	CVE-2025-24016: RCE in Wazuh server! Remote Code Execution
41	2025-02-27T05:21:34Z	CVE-2025-24118	https://github.com/jprx/CVE-2025-24118	An XNU kernel race condition bug
19	2025-03-08T18:31:52Z	CVE-2025-20029	https://github.com/mbadanoiu/CVE-2025-20029	CVE-2025-20029: Command Injection in TMSH CLI in F5 BIG-IP
33	2025-02-26T00:26:10Z	CVE-2025-23369	https://github.com/hakivvi/CVE-2025-23369	GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit
29	2025-03-08T13:59:19Z	CVE-2025-24104	https://github.com/ifpdz/CVE-2025-24104
2	2024-08-12T19:46:13Z	CVE-2018-20250	https://github.com/STP5940/CVE-2018-20250
7	2024-08-29T01:22:26Z	CVE-2018-20250-WINRAR-ACE-GUI	https://github.com/arkangel-dev/CVE-2018-20250-WINRAR-ACE-GUI	CVE-2018-20250-WINRAR-ACE Exploit with a UI
5	2025-03-08T17:16:33Z	CVE-2025-0087-	https://github.com/SpiralBL0CK/CVE-2025-0087-	CVE-2025-0087 EoP full PoC
3	2025-03-06T07:47:09Z	CVE-2025-25279	https://github.com/numanturle/CVE-2025-25279
0	2019-05-16T20:21:53Z	WinRar_ACE_exploit_CVE-2018-20250	https://github.com/H4xl0r/WinRar_ACE_exploit_CVE-2018-20250	This program is an script developed in Python which exploit the ACE vulnerability on WinRar - Vulnerability CVE-2018-20250
11	2025-03-04T04:28:21Z	CVE-2025-1302	https://github.com/EQSTLab/CVE-2025-1302	JSONPath-plus Remote Code Execution
7	2025-03-06T20:51:22Z	CVE-2025-26794	https://github.com/OscarBataille/CVE-2025-26794	CVE-2025-26794: SQLite (DBM) injection in Exim 4.98 - exploit writeup
6	2025-02-25T15:50:46Z	CVE-2025-24200	https://github.com/McTavishSue/CVE-2025-24200	CVE-2025-24200 - Incorrect Authorization
6	2025-02-26T20:27:42Z	CVE-2025-24085	https://github.com/bronsoneaver/CVE-2025-24085	CVE-2025-24085: Incorrect Default Permissions (CWE-276)
11	2025-02-20T07:50:49Z	Zimbra10_SQL_Injection	https://github.com/yelang123/Zimbra10_SQL_Injection	Zimbra 10 SQL Injection (CVE-2025-25064) Analysis Article
5	2025-02-25T07:23:47Z	CVE-2025-22968	https://github.com/CRUNZEX/CVE-2025-22968
6	2025-02-24T10:24:47Z	CVE-2025-0108-PoC	https://github.com/FOLKS-iwd/CVE-2025-0108-PoC	This repository contains a Proof of Concept (PoC) for the CVE-2025-0108 vulnerability, which is an authentication bypass issue in Palo Alto Networks' PAN-OS software. The scripts provided here test for the vulnerability by sending a crafted HTTP request to the target systems.

2024

star	updated_at	name	url	des
2351	2025-03-08T22:53:42Z	CVE-2024-1086	https://github.com/Notselwyn/CVE-2024-1086	Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
653	2025-03-06T13:20:44Z	CVE-2024-38063	https://github.com/ynwarcs/CVE-2024-38063	poc for CVE-2024-38063 (RCE in tcpip.sys)
474	2025-02-14T17:11:59Z	cve-2024-6387-poc	https://github.com/zgzhang/cve-2024-6387-poc	a signal handler race condition in OpenSSH's server (sshd)
484	2025-03-04T23:42:48Z	CVE-2024-49113	https://github.com/SafeBreach-Labs/CVE-2024-49113	LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
525	2025-02-26T01:13:01Z	git_rce	https://github.com/amalmurali47/git_rce	Exploit PoC for CVE-2024-32002
474	2025-03-06T23:49:55Z	CVE-2024-6387_Check	https://github.com/xaitax/CVE-2024-6387_Check	CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
378	2025-03-04T11:15:32Z	cve-2024-6387-poc	https://github.com/acrono/cve-2024-6387-poc	32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
212	2025-02-14T03:02:19Z	CVE-2024-38077	https://github.com/qi4L/CVE-2024-38077	RDL的堆溢出导致的RCE
338	2025-02-27T14:07:36Z	CVE-2024-26229	https://github.com/varwara/CVE-2024-26229	CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
284	2025-03-08T03:12:29Z	CVE-2024-0044	https://github.com/0xbinder/CVE-2024-0044	CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
288	2025-03-01T08:45:08Z	CVE-2024-21338	https://github.com/hakaioffsec/CVE-2024-21338	Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
275	2025-02-19T02:07:53Z	CVE-2024-35250	https://github.com/varwara/CVE-2024-35250	PoC for the Untrusted Pointer Dereference in the ks.sys driver
196	2025-02-28T21:50:51Z	CVE-2024-23897	https://github.com/h4x0r-dz/CVE-2024-23897	CVE-2024-23897
252	2025-03-09T00:08:01Z	CVE-2024-4577	https://github.com/watchtowrlabs/CVE-2024-4577	PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
3503	2025-03-02T21:49:28Z	xzbot	https://github.com/amlweems/xzbot	notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
248	2025-03-04T09:24:55Z	CVE-2024-30088	https://github.com/tykawaii98/CVE-2024-30088
723	2025-02-27T07:41:09Z	CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability	https://github.com/xaitax/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability	Microsoft-Outlook-Remote-Code-Execution-Vulnerability
244	2025-03-06T13:06:47Z	CVE-2024-49138-POC	https://github.com/MrAle98/CVE-2024-49138-POC	POC exploit for CVE-2024-49138
236	2025-02-11T00:23:14Z	CVE_2024_30078_POC_WIFI	https://github.com/blkph0x/CVE_2024_30078_POC_WIFI	basic concept for the latest windows wifi driver CVE
8	2025-01-19T07:53:54Z	CVE-2024-38077-POC	https://github.com/SecStarBot/CVE-2024-38077-POC
217	2024-12-20T15:01:42Z	CVE-2024-21111	https://github.com/mansk1es/CVE-2024-21111	Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
136	2025-02-18T11:44:23Z	CVE-2024-7479_CVE-2024-7481	https://github.com/PeterGabaldon/CVE-2024-7479_CVE-2024-7481	TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
152	2025-03-06T15:30:38Z	CVE-2024-4367-PoC	https://github.com/LOURC0D3/CVE-2024-4367-PoC	CVE-2024-4367 & CVE-2024-34342 Proof of Concept
80	2025-01-02T18:28:11Z	CVE-2024-30078-	https://github.com/lvyitian/CVE-2024-30078-	CVE-2024-30078 Detection and Command Execution Script
82	2025-03-07T01:37:05Z	apache-vulnerability-testing	https://github.com/mrmtwoj/apache-vulnerability-testing	Apache HTTP Server Vulnerability Testing Tool
138	2025-02-28T02:33:35Z	CVE-2024-38200	https://github.com/passtheticket/CVE-2024-38200	CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
158	2025-03-08T13:43:25Z	CVE-2024-25600	https://github.com/Chocapikk/CVE-2024-25600	Unauthenticated Remote Code Execution – Bricks <= 1.9.6
159	2025-02-02T16:54:19Z	CVE-2024-21413	https://github.com/duy-31/CVE-2024-21413	Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
137	2025-01-29T11:27:30Z	cve-2024-20017	https://github.com/mellow-hype/cve-2024-20017	exploits for CVE-2024-20017
118	2025-02-13T04:15:06Z	CVE-2024-30051	https://github.com/fortra/CVE-2024-30051

2023

star	updated_at	name	url	des
420	2025-02-13T04:40:26Z	qq-tim-elevation	https://github.com/vi3t1/qq-tim-elevation	CVE-2023-34312
1404	2025-03-09T00:00:44Z	cvelist	https://github.com/CVEProject/cvelist	Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023
784	2025-02-28T03:44:06Z	CVE-2023-38831-winrar-exploit	https://github.com/b1tg/CVE-2023-38831-winrar-exploit	CVE-2023-38831 winrar exploit generator
487	2025-02-25T18:04:11Z	Windows_LPE_AFD_CVE-2023-21768	https://github.com/chompie1337/Windows_LPE_AFD_CVE-2023-21768	LPE exploit for CVE-2023-21768
370	2025-02-25T12:26:17Z	CVE-2023-32233	https://github.com/Liuk3r/CVE-2023-32233	CVE-2023-32233: Linux内核中的安全漏洞
388	2025-02-19T21:21:15Z	CVE-2023-0386	https://github.com/xkaneiki/CVE-2023-0386	CVE-2023-0386在ubuntu22.04上的提权
384	2025-02-14T17:11:51Z	CVE-2023-4911	https://github.com/leesh3288/CVE-2023-4911	PoC for CVE-2023-4911
312	2025-02-18T17:58:44Z	CVE-2023-21752	https://github.com/Wh04m1001/CVE-2023-21752
636	2025-02-19T16:54:54Z	keepass-password-dumper	https://github.com/vdohney/keepass-password-dumper	Original PoC for CVE-2023-32784
75	2025-03-03T03:20:44Z	CVE-2023-21839	https://github.com/ASkyeye/CVE-2023-21839	Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)
269	2025-03-03T18:54:36Z	CVE-2023-21608	https://github.com/hacksysteam/CVE-2023-21608	Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
317	2025-02-20T02:55:10Z	CVE-2023-4863	https://github.com/mistymntncop/CVE-2023-4863
228	2025-02-28T14:56:53Z	CVE-2023-44487	https://github.com/bcdannyboy/CVE-2023-44487	Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487
234	2025-02-19T05:59:04Z	CVE-2023-36874	https://github.com/Wh04m1001/CVE-2023-36874
163	2025-03-07T14:48:05Z	CVE-2023-36745	https://github.com/N1k0la-T/CVE-2023-36745
231	2025-02-14T17:11:39Z	CVE-2023-20887	https://github.com/sinsinology/CVE-2023-20887	VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
341	2024-12-26T11:47:54Z	CVE-2023-23397-POC-Powershell	https://github.com/api0cradle/CVE-2023-23397-POC-Powershell
240	2025-02-12T16:33:30Z	CVE-2023-7028	https://github.com/Vozec/CVE-2023-7028	This repository presents a proof-of-concept of CVE-2023-7028
221	2025-02-28T21:50:41Z	CVE-2023-3519	https://github.com/BishopFox/CVE-2023-3519	RCE exploit for CVE-2023-3519
139	2025-03-04T20:12:25Z	CVE-2023-34362	https://github.com/horizon3ai/CVE-2023-34362	MOVEit CVE-2023-34362
177	2025-02-22T18:03:55Z	CVE-2023-28252	https://github.com/fortra/CVE-2023-28252
234	2025-02-22T13:50:25Z	Weblogic-CVE-2023-21839	https://github.com/DXask88MA/Weblogic-CVE-2023-21839
203	2025-02-28T21:50:48Z	CVE-2023-46747-RCE	https://github.com/W01fh4cker/CVE-2023-46747-RCE	exploit for f5-big-ip RCE cve-2023-46747
278	2025-03-05T20:17:21Z	CVE-2023-25690-POC	https://github.com/dhmosfunk/CVE-2023-25690-POC	CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
147	2025-02-18T11:46:28Z	cve-2023-29360	https://github.com/Nero22k/cve-2023-29360	Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
229	2025-02-28T21:50:45Z	CVE-2023-29357	https://github.com/Chocapikk/CVE-2023-29357	Microsoft SharePoint Server Elevation of Privilege Vulnerability
165	2025-02-28T21:50:38Z	CVE-2023-25157	https://github.com/win3zz/CVE-2023-25157	CVE-2023-25157 - GeoServer SQL Injection - PoC
160	2025-02-22T18:03:53Z	CVE-2023-23397_EXPLOIT_0DAY	https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY	Exploit for the CVE-2023-23397
123	2025-02-06T06:05:33Z	CVE-2023-2640-CVE-2023-32629	https://github.com/g1vi/CVE-2023-2640-CVE-2023-32629	GameOver(lay) Ubuntu Privilege Escalation
167	2025-02-18T17:12:39Z	CVE-2023-4911	https://github.com/RickdeJager/CVE-2023-4911	CVE-2023-4911 proof of concept

2022

star	updated_at	name	url	des
428	2025-01-27T01:16:24Z	CVE-2022-25636	https://github.com/Bonfee/CVE-2022-25636	CVE-2022-25636
461	2024-12-27T12:18:55Z	CVE-2022-21882	https://github.com/KaLendsi/CVE-2022-21882	win32k LPE
1094	2025-03-08T08:14:52Z	CVE-2022-0847-DirtyPipe-Exploit	https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit	A root exploit for CVE-2022-0847 (Dirty Pipe)
688	2025-02-26T12:45:53Z	CVE-2022-29072	https://github.com/kagancapar/CVE-2022-29072	7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.
565	2025-02-23T18:25:14Z	CVE-2022-23222	https://github.com/tr3ee/CVE-2022-23222	CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
368	2025-02-25T21:33:20Z	CVE-2022-0185	https://github.com/Crusaders-of-Rust/CVE-2022-0185	CVE-2022-0185
497	2025-02-27T19:29:07Z	CVE-2022-0995	https://github.com/Bonfee/CVE-2022-0995	CVE-2022-0995 exploit
219	2025-02-12T15:44:25Z	Spring-Cloud-Gateway-CVE-2022-22947	https://github.com/lucksec/Spring-Cloud-Gateway-CVE-2022-22947	CVE-2022-22947
530	2025-01-19T17:42:53Z	OpenSSL-2022	https://github.com/NCSC-NL/OpenSSL-2022	Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3
361	2025-01-21T20:35:55Z	CVE-2022-21907	https://github.com/ZZ-SOCMAP/CVE-2022-21907	HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907
369	2024-12-14T21:15:44Z	CVE-2022-29464	https://github.com/hakivvi/CVE-2022-29464	WSO2 RCE (CVE-2022-29464) exploit and writeup.
349	2025-02-28T21:50:27Z	CVE-2022-40684	https://github.com/horizon3ai/CVE-2022-40684	A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
476	2025-02-14T17:11:13Z	CVE-2022-2588	https://github.com/Markakd/CVE-2022-2588	exploit for CVE-2022-2588
379	2025-02-25T03:10:42Z	CVE-2022-39197	https://github.com/its-arun/CVE-2022-39197	CobaltStrike <= 4.7.1 RCE
582	2025-03-02T19:50:07Z	CVE-2022-0847-DirtyPipe-Exploits	https://github.com/AlexisAhmed/CVE-2022-0847-DirtyPipe-Exploits	A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.
400	2025-03-07T01:02:36Z	CVE-2022-33679	https://github.com/Bdenneu/CVE-2022-33679	One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
277	2025-02-12T15:44:25Z	CVE-2022-0847	https://github.com/r1is/CVE-2022-0847	CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”
453	2025-01-26T21:17:08Z	CVE-2022-27254	https://github.com/nonamecoder/CVE-2022-27254	PoC for vulnerability in Honda's Remote Keyless System(CVE-2022-27254)
307	2024-11-15T16:45:11Z	CVE-2022-21971	https://github.com/0vercl0k/CVE-2022-21971	PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
318	2025-03-08T12:51:37Z	CVE-2022-21894	https://github.com/Wack0/CVE-2022-21894	baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
313	2025-01-14T03:51:04Z	CVE-2022-39197-patch	https://github.com/burpheart/CVE-2022-39197-patch	CVE-2022-39197 漏洞补丁. CVE-2022-39197 Vulnerability Patch.
311	2025-03-05T18:27:43Z	Spring4Shell-POC	https://github.com/reznok/Spring4Shell-POC	Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
267	2025-02-28T21:50:32Z	CVE-2022-39952	https://github.com/horizon3ai/CVE-2022-39952	POC for CVE-2022-39952
275	2025-02-14T17:11:11Z	cve-2022-27255	https://github.com/infobyte/cve-2022-27255
194	2024-11-10T10:54:56Z	CVE-2022-21882	https://github.com/L4ys/CVE-2022-21882
116	2024-12-14T15:02:55Z	CVE-2022-22963	https://github.com/dinosn/CVE-2022-22963	CVE-2022-22963 PoC
282	2025-01-24T14:15:54Z	VMware-CVE-2022-22954	https://github.com/sherlocksecurity/VMware-CVE-2022-22954	POC for VMWARE CVE-2022-22954
217	2024-11-20T06:17:12Z	CVE-2022-30075	https://github.com/aaronsvk/CVE-2022-30075	Tp-Link Archer AX50 Authenticated RCE (CVE-2022-30075)
239	2025-02-08T13:55:07Z	CVE-2022-20699	https://github.com/Audiobahn/CVE-2022-20699	Cisco Anyconnect VPN unauth RCE (rwx stack)
183	2024-11-21T13:26:19Z	CVE-2022-0778	https://github.com/drago-96/CVE-2022-0778	Proof of concept for CVE-2022-0778, which triggers an infinite loop in parsing X.509 certificates due to a bug in BN_mod_sqrt

2021

star	updated_at	name	url	des
1360	2025-02-28T00:12:52Z	noPac	https://github.com/cube0x0/noPac	CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
1868	2025-03-02T14:31:15Z	CVE-2021-1675	https://github.com/cube0x0/CVE-2021-1675	C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
1984	2025-03-02T11:23:57Z	CVE-2021-4034	https://github.com/berdav/CVE-2021-4034	CVE-2021-4034 1day
1616	2025-03-07T13:58:15Z	CVE-2021-40444	https://github.com/lockedbyte/CVE-2021-40444	CVE-2021-40444 PoC
1071	2025-02-22T07:45:52Z	CVE-2021-4034	https://github.com/arthepsy/CVE-2021-4034	PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
969	2025-03-04T13:50:12Z	CVE-2021-3156	https://github.com/blasty/CVE-2021-3156
1039	2025-03-06T06:20:58Z	CVE-2021-1675	https://github.com/calebstewart/CVE-2021-1675	Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
491	2025-02-28T21:50:03Z	CVE-2021-21972	https://github.com/NS-Sp4ce/CVE-2021-21972	CVE-2021-21972 Exploit
1006	2025-03-05T12:48:54Z	sam-the-admin	https://github.com/safebuffer/sam-the-admin	Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
804	2025-02-27T10:50:38Z	CVE-2021-40444	https://github.com/klezVirus/CVE-2021-40444	CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
417	2025-02-21T07:36:28Z	CVE-2021-1732-Exploit	https://github.com/KaLendsi/CVE-2021-1732-Exploit	CVE-2021-1732 Exploit
743	2025-03-04T13:14:17Z	CVE-2021-3156	https://github.com/worawit/CVE-2021-3156	Sudo Baron Samedit Exploit
821	2025-02-27T07:40:15Z	CVE-2021-31166	https://github.com/0vercl0k/CVE-2021-31166	Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
856	2025-02-18T02:52:39Z	CVE-2021-44228-Scanner	https://github.com/logpresso/CVE-2021-44228-Scanner	Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228
848	2025-03-07T13:43:06Z	noPac	https://github.com/Ridter/noPac	Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
1821	2025-03-08T08:49:28Z	log4j-shell-poc	https://github.com/kozmer/log4j-shell-poc	A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
415	2025-02-28T19:28:59Z	CVE-2021-3493	https://github.com/briskets/CVE-2021-3493	Ubuntu OverlayFS Local Privesc
332	2024-12-25T21:21:44Z	CVE-2021-1675-LPE	https://github.com/hlldz/CVE-2021-1675-LPE	Local Privilege Escalation Edition for CVE-2021-1675/CVE-2021-34527
1115	2025-02-21T00:31:33Z	log4shell-vulnerable-app	https://github.com/christophetd/log4shell-vulnerable-app	Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
179	2025-02-27T16:10:30Z	exprolog	https://github.com/herwonowr/exprolog	ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
434	2025-01-21T08:12:18Z	CVE-2021-3156	https://github.com/stong/CVE-2021-3156	PoC for CVE-2021-3156 (sudo heap overflow)
435	2024-10-03T05:15:58Z	log4j-finder	https://github.com/fox-it/log4j-finder	Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
174	2025-01-25T14:14:36Z	ProxyVulns	https://github.com/hosch3n/ProxyVulns	[ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-31207 Exploit Chains.
269	2025-03-07T21:41:46Z	CVE-2021-22205	https://github.com/Al1ex/CVE-2021-22205	CVE-2021-22205& GitLab CE/EE RCE
147	2024-12-04T10:07:59Z	CVE-2021-41773_CVE-2021-42013	https://github.com/inbug-team/CVE-2021-41773_CVE-2021-42013	CVE-2021-41773 CVE-2021-42013漏洞批量检测工具
3408	2025-03-04T14:54:41Z	log4j-scan	https://github.com/fullhunt/log4j-scan	A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
258	2025-02-22T18:04:31Z	CVE-2021-21972	https://github.com/horizon3ai/CVE-2021-21972	Proof of Concept Exploit for vCenter CVE-2021-21972
356	2025-02-22T04:32:59Z	Grafana-CVE-2021-43798	https://github.com/jas502n/Grafana-CVE-2021-43798	Grafana Unauthorized arbitrary file reading vulnerability
257	2025-01-30T07:39:24Z	CVE-2021-36260	https://github.com/Aiminsun/CVE-2021-36260	command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.
344	2025-02-27T16:05:25Z	CVE-2021-44228_scanner	https://github.com/CERTCC/CVE-2021-44228_scanner	Scanners for Jar files that may be vulnerable to CVE-2021-44228

2020

star	updated_at	name	url	des
4174	2025-03-07T22:12:11Z	exphub	https://github.com/zhzyker/exphub	Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
1762	2025-03-07T12:14:03Z	CVE-2020-1472	https://github.com/SecuraBV/CVE-2020-1472	Test tool for CVE-2020-1472
2030	2025-03-04T14:54:15Z	weblogicScanner	https://github.com/0xn0ne/weblogicScanner	weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883
1311	2025-03-04T17:13:38Z	CVE-2020-0796	https://github.com/danigargu/CVE-2020-0796	CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
1217	2025-03-05T20:05:23Z	CVE-2020-1472	https://github.com/dirkjanm/CVE-2020-1472	PoC for Zerologon - all research credits go to Tom Tervoort of Secura
283	2025-01-17T09:53:36Z	CVE-2020-14882	https://github.com/jas502n/CVE-2020-14882	CVE-2020–14882、CVE-2020–14883
322	2025-03-04T07:39:45Z	cve-2020-0688	https://github.com/Ridter/cve-2020-0688	cve-2020-0688
651	2025-03-02T17:21:36Z	zerologon	https://github.com/risksense/zerologon	Exploit for zerologon cve-2020-1472
676	2025-03-02T13:52:00Z	SMBGhost	https://github.com/ly4k/SMBGhost	Scanner for CVE-2020-0796 - SMBv3 RCE
372	2025-02-03T09:35:28Z	CVE-2020-5902	https://github.com/jas502n/CVE-2020-5902	CVE-2020-5902 BIG-IP
549	2025-03-07T09:00:45Z	CVE-2020-0796-RCE-POC	https://github.com/jamf/CVE-2020-0796-RCE-POC	CVE-2020-0796 Remote Code Execution POC
345	2025-02-09T23:28:55Z	CVEAC-2020	https://github.com/thesecretclub/CVEAC-2020	EasyAntiCheat Integrity check bypass by mimicking memory changes
132	2025-01-31T14:12:58Z	CVE_2020_2546	https://github.com/hktalent/CVE_2020_2546	CVE-2020-2546，CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc python3,
888	2025-02-06T12:35:58Z	CurveBall	https://github.com/ly4k/CurveBall	PoC for CVE-2020-0601- Windows CryptoAPI (Crypt32.dll)
292	2025-03-08T00:35:44Z	CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner	https://github.com/bkfish/CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner	Cnvd-2020-10487 / cve-2020-1938, scanner tool
216	2025-02-26T09:46:35Z	SAP_RECON	https://github.com/chipik/SAP_RECON	PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
353	2025-02-24T06:28:33Z	CVE-2020-0688	https://github.com/zcgonvh/CVE-2020-0688	Exploit and detect tools for CVE-2020-0688
163	2025-01-22T23:28:37Z	cve-2020-0688	https://github.com/random-robbie/cve-2020-0688	cve-2020-0688
99	2025-01-21T13:40:05Z	dnspooq	https://github.com/knqyf263/dnspooq	DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
333	2025-02-03T09:18:05Z	CVE-2020-2551	https://github.com/Y4er/CVE-2020-2551	Weblogic IIOP CVE-2020-2551
717	2025-03-04T01:57:29Z	CVE-2020-0787-EXP-ALL-WINDOWS-VERSION	https://github.com/cbwang505/CVE-2020-0787-EXP-ALL-WINDOWS-VERSION	Support ALL Windows Version
249	2025-02-28T21:49:46Z	BlueGate	https://github.com/ly4k/BlueGate	PoC (DoS + scanner) for CVE-2020-0609 & CVE-2020-0610 - RD Gateway RCE
383	2025-03-05T11:44:51Z	CVE-2020-1472	https://github.com/VoidSec/CVE-2020-1472	Exploit Code for CVE-2020-1472 aka Zerologon
323	2025-03-01T20:26:08Z	CVE-2020-0796-PoC	https://github.com/eerykitty/CVE-2020-0796-PoC	PoC for triggering buffer overflow via CVE-2020-0796
337	2024-08-12T19:56:40Z	chainoffools	https://github.com/kudelskisecurity/chainoffools	A PoC for CVE-2020-0601
230	2025-03-05T01:15:48Z	CVE-2020-0041	https://github.com/bluefrostsecurity/CVE-2020-0041	Exploits for Android Binder bug CVE-2020-0041
340	2025-01-16T06:15:26Z	CVE-2020-0683	https://github.com/padovah4ck/CVE-2020-0683	CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege
120	2024-11-13T07:38:40Z	CVE-2020-11651-poc	https://github.com/jasperla/CVE-2020-11651-poc	PoC exploit of CVE-2020-11651 and CVE-2020-11652
382	2025-03-07T12:21:37Z	Ghostcat-CNVD-2020-10487	https://github.com/00theway/Ghostcat-CNVD-2020-10487	Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)
451	2025-02-12T15:02:41Z	CVE-2020-15368	https://github.com/stong/CVE-2020-15368	CVE-2020-15368, aka "How to exploit a vulnerable driver"

2019

star	updated_at	name	url	des
2030	2025-03-04T14:54:15Z	weblogicScanner	https://github.com/0xn0ne/weblogicScanner	weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883
4174	2025-03-07T22:12:11Z	exphub	https://github.com/zhzyker/exphub	Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
1805	2025-02-28T09:31:16Z	phuip-fpizdam	https://github.com/neex/phuip-fpizdam	Exploit for CVE-2019-11043
1182	2025-03-05T11:10:57Z	BlueKeep	https://github.com/Ekultek/BlueKeep	Proof of concept for CVE-2019-0708
491	2025-01-08T03:13:48Z	CVE-2019-0708	https://github.com/n1xbyte/CVE-2019-0708	dump
389	2025-01-13T09:59:12Z	CVE-2019-0708	https://github.com/k8gege/CVE-2019-0708	3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)
644	2025-01-05T01:16:23Z	CVE-2019-5736-PoC	https://github.com/Frichetten/CVE-2019-5736-PoC	PoC for CVE-2019-5736
437	2024-12-28T12:55:10Z	CVE-2019-2725	https://github.com/lufeirider/CVE-2019-2725	CVE-2019-2725 命令回显
806	2025-03-08T19:42:38Z	esp32_esp8266_attacks	https://github.com/Matheus-Garbelini/esp32_esp8266_attacks	Proof of Concept of ESP32/8266 Wi-Fi vulnerabilties (CVE-2019-12586, CVE-2019-12587, CVE-2019-12588)
572	2025-03-04T13:47:54Z	cve-2019-19781	https://github.com/trustedsec/cve-2019-19781	This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
351	2025-02-06T12:36:15Z	COMahawk	https://github.com/apt69/COMahawk	Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
363	2025-02-22T18:04:27Z	CVE-2019-11510	https://github.com/projectzeroindia/CVE-2019-11510	Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)
370	2025-02-04T14:15:37Z	CVE-2019-19781	https://github.com/projectzeroindia/CVE-2019-19781	Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
134	2024-12-17T10:35:30Z	CVE-2019-0604	https://github.com/linhlhq/CVE-2019-0604	CVE-2019-0604
331	2025-02-07T04:52:42Z	CVE-2019-13272	https://github.com/jas502n/CVE-2019-13272	Linux 4.10 < 5.1.17 PTRACE_TRACEME local root
621	2025-02-06T00:22:30Z	CVE-2019-11708	https://github.com/0vercl0k/CVE-2019-11708	Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.
351	2025-03-05T02:17:58Z	CVE-2019-18935	https://github.com/noperator/CVE-2019-18935	RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
242	2024-08-12T19:47:37Z	CVE-2019-0841	https://github.com/rogue-kdc/CVE-2019-0841	PoC code for CVE-2019-0841 Privilege Escalation vulnerability
198	2025-02-28T21:49:42Z	CVE-2019-11932	https://github.com/awakened1712/CVE-2019-11932	Simple POC for exploiting WhatsApp double-free bug in DDGifSlurp in decoding.c in libpl_droidsonroids_gif
313	2025-02-25T03:20:39Z	cve-2019-1003000-jenkins-rce-poc	https://github.com/adamyordan/cve-2019-1003000-jenkins-rce-poc	Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
256	2024-11-22T06:44:14Z	CVE-2019-5786	https://github.com/exodusintel/CVE-2019-5786	FileReader Exploit
268	2025-02-22T22:29:18Z	CVE-2019-11932	https://github.com/dorkerdevil/CVE-2019-11932	double-free bug in WhatsApp exploit poc
904	2025-02-25T11:33:21Z	rdpscan	https://github.com/robertdavidgraham/rdpscan	A quick scanner for the CVE-2019-0708 "BlueKeep" vulnerability.
290	2025-01-14T12:19:03Z	bluekeep	https://github.com/0xeb-bp/bluekeep	Public work for CVE-2019-0708
249	2025-02-21T01:25:25Z	CVE-2019-1040	https://github.com/Ridter/CVE-2019-1040	CVE-2019-1040 with Exchange
190	2025-02-25T13:06:08Z	CVE-2019-2725	https://github.com/TopScrew/CVE-2019-2725	CVE-2019-2725命令回显+webshell上传+最新绕过
227	2024-11-01T02:37:48Z	CVE-2019-9810	https://github.com/0vercl0k/CVE-2019-9810	Exploit for CVE-2019-9810 Firefox on Windows 64-bit.
193	2025-01-30T09:21:46Z	CVE-2019-16098	https://github.com/Barakat/CVE-2019-16098	Local privilege escalation PoC exploit for CVE-2019-16098
209	2024-08-12T19:46:33Z	CVE-2019-0192	https://github.com/mpgn/CVE-2019-0192	RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
159	2025-03-03T10:41:16Z	CVE-2019-7609	https://github.com/LandGrey/CVE-2019-7609	exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts

2018

star	updated_at	name	url	des
2030	2025-03-04T14:54:15Z	weblogicScanner	https://github.com/0xn0ne/weblogicScanner	weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883
497	2025-02-17T09:34:43Z	CVE-2018-8120	https://github.com/rip1s/CVE-2018-8120	CVE-2018-8120 Windows LPE exploit
487	2025-03-03T18:54:11Z	CVE-2018-20250	https://github.com/WyAtu/CVE-2018-20250	exp for https://research.checkpoint.com/extracting-code-execution-from-winrar
521	2025-03-03T10:41:06Z	CVE-2018-15473-Exploit	https://github.com/Rhynorater/CVE-2018-15473-Exploit	Exploit written in Python for CVE-2018-15473 with threading and export formats
371	2025-01-06T03:47:20Z	Exchange2domain	https://github.com/Ridter/Exchange2domain	CVE-2018-8581
253	2025-01-31T14:34:44Z	CVE-2018-13379	https://github.com/milo2012/CVE-2018-13379	CVE-2018-13379
531	2025-02-28T11:12:17Z	CVE-2018-9995_dvr_credentials	https://github.com/ezelf/CVE-2018-9995_dvr_credentials	(CVE-2018-9995) Get DVR Credentials
498	2025-02-24T15:58:11Z	CVE-2018-10933	https://github.com/blacknbunny/CVE-2018-10933	Spawn to shell without any credentials by using CVE-2018-10933 (LibSSH)
271	2025-02-24T20:59:01Z	CVE-2018-0802	https://github.com/rxwx/CVE-2018-0802	PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
294	2025-03-04T14:54:01Z	CVE-2018-8120	https://github.com/alpha1ab/CVE-2018-8120	CVE-2018-8120 Exploit for Win2003 Win2008 WinXP Win7
351	2025-02-03T09:31:41Z	CVE-2018-7600	https://github.com/a2u/CVE-2018-7600	💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002
410	2025-01-30T09:21:40Z	CVE-2018-8897	https://github.com/can1357/CVE-2018-8897	Arbitrary code execution with kernel privileges using CVE-2018-8897.
332	2024-12-06T02:42:13Z	CVE-2018-8581	https://github.com/WyAtu/CVE-2018-8581	CVE-2018-8581
78	2024-08-12T19:37:50Z	CVE-2018-2628	https://github.com/shengqi158/CVE-2018-2628	CVE-2018-2628 & CVE-2018-2893
511	2025-03-08T04:36:33Z	WinboxPoC	https://github.com/BasuCert/WinboxPoC	Proof of Concept of Winbox Critical Vulnerability (CVE-2018-14847)
148	2025-02-22T18:01:34Z	CVE-2018-13382	https://github.com/milo2012/CVE-2018-13382	CVE-2018-13382
141	2025-02-16T12:00:48Z	CVE-2018-8174_EXP	https://github.com/Yt1g3r/CVE-2018-8174_EXP	CVE-2018-8174_python
301	2024-11-04T11:13:26Z	struts-pwn_CVE-2018-11776	https://github.com/mazen160/struts-pwn_CVE-2018-11776	An exploit for Apache Struts CVE-2018-11776
202	2024-11-26T06:18:57Z	CVE-2018-0296	https://github.com/yassineaboukir/CVE-2018-0296	Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
167	2024-09-13T14:17:13Z	CVE-2018-3245	https://github.com/pyn3rd/CVE-2018-3245	CVE-2018-3245-PoC
164	2025-02-17T09:35:37Z	cve-2018-8120	https://github.com/bigric3/cve-2018-8120
132	2025-01-24T12:34:02Z	CVE-2018-7600	https://github.com/pimps/CVE-2018-7600	Exploit for Drupal 7 <= 7.57 CVE-2018-7600
166	2024-08-12T19:35:27Z	RTF_11882_0802	https://github.com/Ridter/RTF_11882_0802	PoC for CVE-2018-0802 And CVE-2017-11882
122	2025-01-17T02:29:49Z	cve-2018-8453-exp	https://github.com/ze0r/cve-2018-8453-exp	cve-2018-8453 exp
181	2024-11-03T09:27:33Z	CVE-2018-15982_EXP	https://github.com/Ridter/CVE-2018-15982_EXP	exp of CVE-2018-15982
167	2024-09-13T15:40:47Z	CVE-2018-8174-msf	https://github.com/0x09AL/CVE-2018-8174-msf	CVE-2018-8174 - VBScript memory corruption exploit.
59	2024-12-06T22:03:54Z	bluetoothdPoC	https://github.com/rani-i/bluetoothdPoC	CVE-2018-4087 PoC
129	2024-08-12T19:42:04Z	CVE-2018-17182	https://github.com/jas502n/CVE-2018-17182	Linux 内核VMA-UAF 提权漏洞（CVE-2018-17182）,0day
263	2025-02-04T16:03:14Z	credssp	https://github.com/preempt/credssp	A code demonstrating CVE-2018-0886
137	2025-02-03T09:18:02Z	CVE-2018-2894	https://github.com/LandGrey/CVE-2018-2894	CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script

2017

star	updated_at	name	url	des
541	2025-02-15T17:00:29Z	CVE-2017-11882	https://github.com/Ridter/CVE-2017-11882	CVE-2017-11882 from https://github.com/embedi/CVE-2017-11882
725	2025-03-03T18:53:55Z	CVE-2017-0199	https://github.com/bhdresh/CVE-2017-0199	Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
2030	2025-03-04T14:54:15Z	weblogicScanner	https://github.com/0xn0ne/weblogicScanner	weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883
761	2025-03-06T05:13:23Z	spectre-attack	https://github.com/Eugnis/spectre-attack	Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)
493	2025-01-07T11:29:38Z	CVE-2017-11882	https://github.com/embedi/CVE-2017-11882	Proof-of-Concept exploits for CVE-2017-11882
466	2025-02-03T09:33:45Z	CVE-2017-0785	https://github.com/ojasookert/CVE-2017-0785	Blueborne CVE-2017-0785 Android information leak vulnerability
389	2025-02-28T21:49:20Z	CVE-2017-12617	https://github.com/cyberheartmi9/CVE-2017-12617	Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
316	2025-03-03T18:53:58Z	CVE-2017-8759	https://github.com/bhdresh/CVE-2017-8759	Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
325	2025-03-03T18:54:00Z	CVE-2017-11882	https://github.com/rip1s/CVE-2017-11882	CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.
381	2025-01-29T19:34:12Z	exploit-CVE-2017-7494	https://github.com/opsxcq/exploit-CVE-2017-7494	SambaCry exploit and vulnerable container (CVE-2017-7494)
186	2025-03-03T18:54:01Z	CVE-2017-8570	https://github.com/rxwx/CVE-2017-8570	Proof of Concept exploit for CVE-2017-8570
332	2025-02-20T20:53:59Z	eternal_scanner	https://github.com/peterpt/eternal_scanner	An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)
256	2025-02-27T07:38:47Z	CVE-2017-7494	https://github.com/joxeankoret/CVE-2017-7494	Remote root exploit for the SAMBA CVE-2017-7494 vulnerability
271	2025-02-24T20:59:01Z	CVE-2018-0802	https://github.com/rxwx/CVE-2018-0802	PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
173	2024-08-12T19:32:34Z	CVE-2017-8759	https://github.com/vysecurity/CVE-2017-8759	CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
255	2024-08-12T19:32:34Z	CVE-2017-8759-Exploit-sample	https://github.com/Voulnet/CVE-2017-8759-Exploit-sample	Running CVE-2017-8759 exploit sample.
87	2025-01-21T12:47:13Z	iis6-exploit-2017-CVE-2017-7269	https://github.com/g0rx/iis6-exploit-2017-CVE-2017-7269	iis6 exploit 2017 CVE-2017-7269
429	2025-02-07T22:39:17Z	struts-pwn	https://github.com/mazen160/struts-pwn	An exploit for Apache Struts CVE-2017-5638
179	2024-12-30T02:15:44Z	cve-2017-7494	https://github.com/betab0t/cve-2017-7494	Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)
188	2025-02-20T08:58:20Z	Jira-Scan	https://github.com/random-robbie/Jira-Scan	CVE-2017-9506 - SSRF
135	2025-01-20T02:00:30Z	cve-2017-7269	https://github.com/zcgonvh/cve-2017-7269	fixed msf module for cve-2017-7269
166	2024-08-12T19:35:27Z	RTF_11882_0802	https://github.com/Ridter/RTF_11882_0802	PoC for CVE-2018-0802 And CVE-2017-11882
43	2024-08-12T19:34:15Z	CVE-2017-11882	https://github.com/starnightcyber/CVE-2017-11882	CVE-2017-11882 exploitation
206	2024-12-03T03:13:54Z	jboss-_CVE-2017-12149	https://github.com/yunxu1/jboss-_CVE-2017-12149	CVE-2017-12149 jboss反序列化可回显
249	2024-10-16T07:20:46Z	struts-pwn_CVE-2017-9805	https://github.com/mazen160/struts-pwn_CVE-2017-9805	An exploit for Apache Struts CVE-2017-9805
139	2024-12-16T21:39:31Z	CVE-2017-0781	https://github.com/ojasookert/CVE-2017-0781	Blueborne CVE-2017-0781 Android heap overflow vulnerability
142	2025-01-13T01:37:38Z	CVE-2017-10271	https://github.com/c0mmand3rOpSec/CVE-2017-10271	WebLogic Exploit
63	2025-03-08T17:18:34Z	Exploit-Development	https://github.com/wetw0rk/Exploit-Development	CVE-2020-8012, CVE-2016-10709, CVE-2017-17099, CVE-2017-18047, CVE-2019-1003000, CVE-2018-1999002
56	2025-03-08T14:47:23Z	CVE-2017-1000353	https://github.com/vulhub/CVE-2017-1000353	jenkins CVE-2017-1000353 POC
99	2024-12-30T08:51:48Z	CVE-2017-11882-metasploit	https://github.com/0x09AL/CVE-2017-11882-metasploit	This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

2016

star	updated_at	name	url	des
969	2025-03-05T01:12:26Z	CVE-2016-5195	https://github.com/timwr/CVE-2016-5195	CVE-2016-5195 (dirtycow/dirtyc0w) proof of concept for Android
876	2025-03-04T14:53:55Z	dirtycow	https://github.com/firefart/dirtycow	Dirty Cow exploit - CVE-2016-5195
2030	2025-03-04T14:54:15Z	weblogicScanner	https://github.com/0xn0ne/weblogicScanner	weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883
326	2025-03-01T10:48:01Z	CVE-2016-0051	https://github.com/koczkatamas/CVE-2016-0051	EoP (Win7) & BSoD (Win10) PoC for CVE-2016-0051 (MS-016)
322	2025-02-20T14:24:44Z	CVE-2016-5195	https://github.com/gbonacini/CVE-2016-5195	A CVE-2016-5195 exploit example.
403	2025-03-01T10:03:07Z	exploit-CVE-2016-10033	https://github.com/opsxcq/exploit-CVE-2016-10033	PHPMailer < 5.2.18 Remote Code Execution exploit and vulnerable container
501	2025-03-03T13:13:00Z	PoCs	https://github.com/ImageTragick/PoCs	Proof of Concepts for CVE-2016–3714
494	2025-02-22T20:46:03Z	dirtycow-vdso	https://github.com/scumjr/dirtycow-vdso	PoC for Dirty COW (CVE-2016-5195)
159	2025-01-09T07:35:06Z	CVE-2016-6366	https://github.com/RiskSense-Ops/CVE-2016-6366	Public repository for improvements to the EXTRABACON exploit
187	2025-03-06T00:49:32Z	CVE-2016-2107	https://github.com/FiloSottile/CVE-2016-2107	Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107)
115	2025-01-05T00:58:38Z	cve-2016-0189	https://github.com/theori-io/cve-2016-0189	Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)
81	2025-01-30T09:21:36Z	CVE-2016-7255	https://github.com/FSecureLABS/CVE-2016-7255	An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
138	2025-01-27T07:02:06Z	chakra-2016-11	https://github.com/theori-io/chakra-2016-11	Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)
343	2025-01-21T08:29:17Z	ExtractKeyMaster	https://github.com/laginimaineb/ExtractKeyMaster	Exploit that extracts Qualcomm's KeyMaster keys using CVE-2015-6639 and CVE-2016-2431
152	2024-11-26T22:25:47Z	BadKernel	https://github.com/secmob/BadKernel	Full exploit of CVE-2016-6754(BadKernel) and slide of SyScan360 2016
79	2024-08-12T19:22:45Z	CVE-2016-0801	https://github.com/abdsec/CVE-2016-0801
69	2025-03-01T10:01:35Z	CVE-2016-3714	https://github.com/Hood3dRob1n/CVE-2016-3714	ImaegMagick Code Execution (CVE-2016-3714)
53	2025-02-12T04:00:36Z	cve-2016-1764	https://github.com/moloch--/cve-2016-1764	Extraction of iMessage Data via XSS
105	2024-12-09T03:07:42Z	jscpwn	https://github.com/saelo/jscpwn	PoC exploit for CVE-2016-4622
98	2024-08-12T19:25:15Z	PegasusX	https://github.com/jndok/PegasusX	OS X 10.11.6 LPE PoC for CVE-2016-4655 / CVE-2016-4656
63	2025-03-08T17:18:34Z	Exploit-Development	https://github.com/wetw0rk/Exploit-Development	CVE-2020-8012, CVE-2016-10709, CVE-2017-17099, CVE-2017-18047, CVE-2019-1003000, CVE-2018-1999002
45	2024-08-12T19:21:36Z	cve-2016-0040	https://github.com/Rootkitsmm-zz/cve-2016-0040	Exploiting CVE-2016-0040 uninitialized pointer
265	2025-01-21T08:28:28Z	VIKIROOT	https://github.com/hyln9/VIKIROOT	CVE-2016-5195 (Dirty COW) PoC for Android 6.0.1 Marshmallow
53	2024-08-12T19:26:30Z	exploit-CVE-2016-6515	https://github.com/opsxcq/exploit-CVE-2016-6515	OpenSSH remote DOS exploit and vulnerable container
63	2025-03-03T12:00:38Z	cve-2016-2431	https://github.com/laginimaineb/cve-2016-2431	Qualcomm TrustZone kernel privilege escalation
81	2025-02-19T10:25:40Z	MS16-032	https://github.com/zcgonvh/MS16-032	MS16-032(CVE-2016-0099) for SERVICE ONLY
49	2023-09-07T17:01:10Z	CVE-2016-2434	https://github.com/jianqiangzhao/CVE-2016-2434
54	2025-01-09T11:58:06Z	CVE-2016-3309_Reloaded	https://github.com/siberas/CVE-2016-3309_Reloaded	Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques
84	2025-02-07T01:44:56Z	mach_race	https://github.com/gdbinit/mach_race	Exploit code for CVE-2016-1757
50	2024-08-12T19:31:38Z	jenkins-cve-2016-0792	https://github.com/jpiechowka/jenkins-cve-2016-0792	Exploit for Jenkins serialization vulnerability - CVE-2016-0792

Donation

Wechat Pay	AliPay	Paypal	BTC Pay	BCH Pay
		paypal [email protected]

Name		Name	Last commit message	Last commit date
Latest commit History 1,117 Commits
.github		.github
cve_poc @ c67c240		cve_poc @ c67c240
.gitignore		.gitignore
.gitmodules		.gitmodules
.run.sh		.run.sh
README.md		README.md
Top.md		Top.md
Top_Codeql.md		Top_Codeql.md
ed.md		ed.md
he.md		he.md
hecdql.md		hecdql.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

TOP

Table of Contents

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

Donation

About

Releases

Sponsor this project

Packages

Contributors 3

Languages

GhostTroops/TOP

Folders and files

Latest commit

History

Repository files navigation

TOP

Table of Contents

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

Donation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Sponsor this project

Packages 0

Contributors 3

Languages

Packages