Recently updated Proof-of-Concepts

2024

Latest 20 of 193 Repositories

Stars	Updated	Name	Description
2137⭐	6 hours ago	CVE-2024-1086	Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
238⭐	1 day ago	CVE-2024-21338	Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
233⭐	6 hours ago	CVE-2024-26229	CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
635⭐	13 hours ago	CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability	Microsoft-Outlook-Remote-Code-Execution-Vulnerability
181⭐	9 days ago	CVE-2024-23897	CVE-2024-23897
149⭐	10 days ago	CVE-2024-21413	Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
136⭐	4 hours ago	CVE-2024-4577	PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
131⭐	2 days ago	CVE-2024-25600	Unauthenticated Remote Code Execution – Bricks <= 1.9.6
128⭐	4 days ago	CVE-2024-27198-RCE	CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4
111⭐	3 days ago	CVE-2024-21683-RCE	CVE-2024-21683 Confluence Post Auth RCE
188⭐	2 hours ago	CVE-2024-26229-BOF	BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
89⭐	6 days ago	CVE-2024-32002	CVE-2024-32002 RCE PoC
102⭐	10 days ago	CVE-2024-21762	out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability
65⭐	1 day ago	CVE-2024-21345	Proof-of-Concept for CVE-2024-21345
97⭐	4 days ago	CVE-2024-22120-RCE	Time Based SQL Injection in Zabbix Server Audit Log --> RCE
49⭐	5 days ago	CVE-2024-3400	CVE-2024-3400
54⭐	10 days ago	CVE-2024-23897	CVE-2024-23897
69⭐	1 day ago	CVE-2024-4577	CVE-2024-4577 is a critical vulnerability in PHP affecting CGI configurations, allowing attackers to execute arbitrary commands via crafted URL parameters.
73⭐	22 days ago	CVE-2024-3273	D-Link NAS CVE-2024-3273 Exploit Tool
84⭐	6 days ago	io_uring_LPE-CVE-2024-0582	LPE exploit for CVE-2024-0582 (io_uring)

2023

Latest 20 of 445 Repositories

Stars	Updated	Name	Description
772⭐	13 hours ago	CVE-2023-38831-winrar-exploit	CVE-2023-38831 winrar exploit generator
365⭐	12 days ago	CVE-2023-32233	CVE-2023-32233: Linux内核中的安全漏洞
470⭐	1 day ago	Windows_LPE_AFD_CVE-2023-21768	LPE exploit for CVE-2023-21768
375⭐	1 day ago	CVE-2023-0386	CVE-2023-0386在ubuntu22.04上的提权
377⭐	9 days ago	CVE-2023-4911	PoC for CVE-2023-4911
263⭐	13 hours ago	CVE-2023-21608	Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
310⭐	1 day ago	CVE-2023-4863
41⭐	6 hours ago	CVE-2023-21839	Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)
216⭐	3 days ago	CVE-2023-44487	Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487
162⭐	13 hours ago	CVE-2023-36745
229⭐	6 days ago	CVE-2023-20887	VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
339⭐	36 days ago	CVE-2023-23397-POC-Powershell
238⭐	1 day ago	CVE-2023-7028	This repository presents a proof-of-concept of CVE-2023-7028
169⭐	17 days ago	CVE-2023-28252
211⭐	24 days ago	CVE-2023-3519	RCE exploit for CVE-2023-3519
214⭐	36 days ago	Weblogic-CVE-2023-21839
201⭐	5 hours ago	CVE-2023-46747-RCE	exploit for f5-big-ip RCE cve-2023-46747
214⭐	20 days ago	CVE-2023-29357	Microsoft SharePoint Server Elevation of Privilege Vulnerability
157⭐	5 hours ago	CVE-2023-25157	CVE-2023-25157 - GeoServer SQL Injection - PoC
133⭐	14 days ago	CVE-2023-34362	MOVEit CVE-2023-34362

2022

Latest 20 of 523 Repositories

Stars	Updated	Name	Description
1078⭐	4 days ago	CVE-2022-0847-DirtyPipe-Exploit	A root exploit for CVE-2022-0847 (Dirty Pipe)
557⭐	3 days ago	CVE-2022-23222	CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
360⭐	26 days ago	CVE-2022-21907	HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907
364⭐	13 days ago	CVE-2022-29464	WSO2 RCE (CVE-2022-29464) exploit and writeup.
333⭐	4 hours ago	CVE-2022-40684	A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
427⭐	34 days ago	CVE-2022-25636	CVE-2022-25636
493⭐	41 days ago	CVE-2022-0995	CVE-2022-0995 exploit
463⭐	12 days ago	CVE-2022-2588	exploit for CVE-2022-2588
371⭐	1 day ago	CVE-2022-39197	CobaltStrike <= 4.7.1 RCE
391⭐	9 days ago	CVE-2022-33679	One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
514⭐	2 days ago	CVE-2022-0847-DirtyPipe-Exploits	A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.
271⭐	41 days ago	CVE-2022-0847	CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”
365⭐	23 days ago	CVE-2022-0185	CVE-2022-0185
278⭐	3 days ago	CVE-2022-21894	baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
267⭐	14 days ago	CVE-2022-39952	POC for CVE-2022-39952
271⭐	41 days ago	cve-2022-27255
237⭐	14 days ago	CVE-2022-20699	Cisco Anyconnect VPN unauth RCE (rwx stack)
208⭐	9 days ago	CVE-2022-30075	Tp-Link Archer AX50 Authenticated RCE (CVE-2022-30075)
216⭐	41 days ago	CVE-2022-34918	CVE-2022-34918 netfilter nf_tables 本地提权 POC
233⭐	12 days ago	CVE-2022-1388	POC for CVE-2022-1388

2021

Latest 20 of 520 Repositories

Stars	Updated	Name	Description
1929⭐	1 day ago	CVE-2021-4034	CVE-2021-4034 1day
1031⭐	1 day ago	CVE-2021-4034	PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
978⭐	6 days ago	CVE-2021-1675	Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
929⭐	2 days ago	CVE-2021-3156
714⭐	2 days ago	CVE-2021-3156	Sudo Baron Samedit Exploit
821⭐	2 days ago	CVE-2021-31166	Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
850⭐	35 days ago	CVE-2021-44228-Scanner	Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228
475⭐	20 days ago	CVE-2021-21972	CVE-2021-21972 Exploit
395⭐	11 hours ago	CVE-2021-3493	Ubuntu OverlayFS Local Privesc
430⭐	9 days ago	CVE-2021-3156	PoC for CVE-2021-3156 (sudo heap overflow)
256⭐	4 hours ago	CVE-2021-22205	CVE-2021-22205& GitLab CE/EE RCE
247⭐	14 days ago	CVE-2021-21972	Proof of Concept Exploit for vCenter CVE-2021-21972
344⭐	25 days ago	CVE-2021-44228_scanner	Scanners for Jar files that may be vulnerable to CVE-2021-44228
350⭐	4 days ago	Grafana-CVE-2021-43798	Grafana Unauthorized arbitrary file reading vulnerability
234⭐	1 day ago	CVE-2021-36260	command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.
329⭐	12 days ago	CVE-2021-1675-LPE	Local Privilege Escalation Edition for CVE-2021-1675/CVE-2021-34527
306⭐	2 days ago	CVE-2021-26084_Confluence	Confluence Server Webwork OGNL injection
240⭐	2 days ago	CVE-2021-34527
236⭐	13 days ago	CVE-2021-38647	Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)
139⭐	14 days ago	CVE-2021-3129	Laravel <= v8.4.2 debug mode: Remote code execution (CVE-2021-3129)

2020

Latest 20 of 374 Repositories

Stars	Updated	Name	Description
1703⭐	9 hours ago	CVE-2020-1472	Test tool for CVE-2020-1472
1290⭐	15 days ago	CVE-2020-0796	CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
1153⭐	23 hours ago	CVE-2020-1472	PoC for Zerologon - all research credits go to Tom Tervoort of Secura
335⭐	6 days ago	CVEAC-2020	EasyAntiCheat Integrity check bypass by mimicking memory changes
372⭐	16 days ago	CVE-2020-5902	CVE-2020-5902 BIG-IP
517⭐	1 day ago	CVE-2020-0796-RCE-POC	CVE-2020-0796 Remote Code Execution POC
322⭐	49 days ago	cve-2020-0688	cve-2020-0688
333⭐	37 days ago	CVE-2020-2551	Weblogic IIOP CVE-2020-2551
367⭐	19 days ago	CVE-2020-1472	Exploit Code for CVE-2020-1472 aka Zerologon
322⭐	11 days ago	CVE-2020-0796-PoC	PoC for triggering buffer overflow via CVE-2020-0796
214⭐	59 days ago	CVE-2020-0041	Exploits for Android Binder bug CVE-2020-0041
243⭐	102 days ago	CVE-2020-0796-LPE-POC	CVE-2020-0796 Local Privilege Escalation POC
181⭐	159 days ago	CVE-2020-2555	Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
213⭐	57 days ago	CVE-2020-2551	how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP
162⭐	36 days ago	cve-2020-0688	cve-2020-0688
144⭐	202 days ago	CVE-2020-0688_EXP	CVE-2020-0688_EXP Auto trigger payload & encrypt method
272⭐	106 days ago	vmware_vcenter_cve_2020_3952	Exploit for CVE-2020-3952 in vCenter 6.7
180⭐	192 days ago	CVE-2020-2883	Weblogic coherence.jar RCE
280⭐	49 days ago	CVE-2020-1350_HoneyPoC	HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2000 up to Windows Server 2019.
163⭐	20 days ago	CVE-2020-13935	Exploit for WebSocket Vulnerability in Apache Tomcat

15 KiB Raw Blame History Unescape Escape

Recently updated Proof-of-Concepts

2024

Latest 20 of 193 Repositories

2023

Latest 20 of 445 Repositories

2022

Latest 20 of 523 Repositories

2021

Latest 20 of 520 Repositories

2020

Latest 20 of 374 Repositories

15 KiB

Raw Blame History