The best tool for finding one gadget RCE in libc.so.6

A collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

2020年~2021年 网站CMS、中间件、框架系统漏洞集合

Joomla! < 4.2.8 - Unauthenticated information disclosure

Cisco ASA Software and ASDM Security Research

A Ruby micro-framework for writing and running exploits

Zimbra邮件系统漏洞 XXE/RCE/SSRF/Upload GetShell Exploit 1. (CVE-2019-9621 Zimbra<8.8.11 XXE GetShell Exploit)

PoC. Severity critical.

Discord client zero-click RCE

Drupal < 7.58 - Drupalgeddon 3 Authenticated Remote Code Execution (Metasploit)

CVE-2022-21907: detection, protection, exploitation and demonstration. Exploitation: Powershell, Python, Ruby, NMAP and Metasploit. Detection and protection: Powershell. Demonstration: Youtube.

Metasploit module for CVE-2025-24071 - Windows NTLM Hash Leak via .library-ms

MSF moudle jboss invoke deploy getshell Exploit & Jboss jmx-console getshell exploit

the venom framework is a framework made in ruby filled with tools for wireless hacking, normal terminal commands, metasploit payloads and more i do plan on adding more things to it in the future if you would like to see updates on this and other tools i make follow me on instagram: @tuf_unkn0wn

Self defense post module for metasploit

Bludit <= 3.9.2 - Authentication Bruteforce Mitigation Bypass

POC script for the ManageEngine Multiple Products Authenticated File Upload Exploit

Dbuster-pro is a beta open-source hacking tool for scanning directories in the websites!