Some-PoC-oR-ExP by coffeehb

各种漏洞poc、Exp的收集或编写

created at March 13, 2015, 3:31 p.m.

Python

156 +0

2,336 +0

972 +1

GitHub
juice-shop by juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

created at Sept. 19, 2014, 2:53 p.m.

TypeScript

160 +0

9,776 +55

9,735 +55

GitHub
commix by commixproject

Automated All-in-One OS Command Injection Exploitation Tool.

created at March 20, 2015, 8:38 a.m.

Python

161 +0

4,390 +3

801 +0

GitHub
wfuzz by xmendez

Web application fuzzer

created at Oct. 22, 2014, 9:23 p.m.

Python

168 +0

5,734 +8

1,335 +0

GitHub
js-vuln-db by tunz

A collection of JavaScript engine CVEs with PoCs

created at Aug. 6, 2016, 1:02 a.m.

Unknown languages

185 +0

2,270 +3

406 +0

GitHub
nuclei by projectdiscovery

Fast and customizable vulnerability scanner based on simple YAML based DSL.

created at April 3, 2020, 6:47 p.m.

Go

218 +0

18,017 +65

2,298 +5

GitHub
social_mapper by Greenwolf

A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)

created at July 7, 2018, 2:50 p.m.

Python

227 +0

3,714 +1

785 +1

GitHub
Sublist3r by aboul3la

Fast subdomains enumeration tool for penetration testers

created at Dec. 15, 2015, 12:55 a.m.

Python

235 +0

9,432 +19

2,071 +5

GitHub
AwesomeXSS by UltimateHackers

Awesome XSS stuff

created at March 11, 2018, 2:35 p.m.

JavaScript

240 +0

4,683 +7

759 +0

GitHub
bug-bounty-reference by ngalongc

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

created at Sept. 1, 2016, 12:53 p.m.

Unknown languages

244 +0

3,628 +1

980 +0

GitHub
wpscan by wpscanteam

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

created at July 11, 2012, 8:27 p.m.

Ruby

266 +0

8,329 +9

1,242 +0

GitHub
Infosec_Reference by rmusser01

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

created at Sept. 13, 2014, 12:08 a.m.

CSS

266 +0

5,415 +0

1,181 -1

GitHub
XSStrike by UltimateHackers

Most advanced XSS scanner.

created at June 26, 2017, 7:24 a.m.

Python

273 +0

12,862 +12

1,862 +0

GitHub
awesome-bug-bounty by djadmin

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

created at Feb. 13, 2016, 11 p.m.

Unknown languages

290 +0

4,426 +4

900 +0

GitHub
awesome-cve-poc by qazbnm456

✍️ A curated list of CVE PoCs.

created at Feb. 2, 2017, 6:43 a.m.

Unknown languages

322 +0

3,256 +3

719 +0

GitHub
Photon by UltimateHackers

Incredibly fast crawler designed for OSINT.

created at March 30, 2018, 7:38 p.m.

Python

324 +2

10,640 +16

1,465 +4

GitHub
fuzzdb by fuzzdb-project

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

created at Sept. 10, 2015, 5:54 p.m.

PHP

366 +0

8,029 +8

2,086 -1

GitHub
CyberChef by gchq

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

created at Nov. 28, 2016, 10:34 a.m.

JavaScript

384 +2

26,916 +427

3,058 +22

GitHub
EQGRP by x0rz

Decrypted content of eqgrp-auction-file.tar.xz

created at April 8, 2017, 2:03 p.m.

Perl

397 +0

4,085 +2

2,077 +2

GitHub
beef by beefproject

The Browser Exploitation Framework Project

created at Nov. 23, 2011, 6:53 a.m.

JavaScript

440 +0

9,493 +15

2,087 +4

GitHub