Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).

CVE-2022-0185

Exploiting CVE-2021-44228 in Unifi Network Application for remote code execution and more.

The Dirty Pipe Vulnerability

CoreFollowUp phishing attack on macOS

A proof of concept for a clickjacking attack on macOS.

Find CVE PoCs on GitHub

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

Ransomware simulator written in Golang

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.

An example of how to use chromedp to run Chrome headless with the remote debugger port programmatically (is still a wrapper around the Chrome binary)

A simple bash TCP port scanner

Get root on macOS 13.0.1 with CVE-2022-46689 (macOS equivalent of the Dirty Cow bug), using the testcase extracted from Apple's XNU source.

A script to automate privilege escalation with CVE-2023-22809 vulnerability

A prototype malware C2 channel using x509 certificates over mTLS

Experiments in weaponizing Crystal for offensive operations.

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

This program is designed to demonstrate various process injection techniques

A Windows potato to privesc

A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities

PoC and Detection for CVE-2024-21626

Fragtunnel is a proof-of-concept (PoC) TCP tunnel tool that you can use to tunnel your application's traffic and bypass next-generation firewalls en route to the target.

Credentials Dumper for Linux using eBPF