100 repository-uri
Frameworks and resources for learning and executing exploit development.
Explore 100 awesome GitHub repositories matching part of an awesome list · Exploit Development. Refine with filters or upvote what's useful.
The framework is a comprehensive penetration testing platform designed for the development, testing, and execution of security exploits. It serves as a research toolkit and automated assessment environment, enabling security professionals to identify and validate vulnerabilities within networked systems and infrastructure through repeatable, standardized procedures. The platform distinguishes itself through a modular architecture that supports reflective payload injection, allowing for the execution of code directly in memory without writing to disk. It utilizes an asynchronous event loop to
Comprehensive penetration testing framework for vulnerability research and exploitation.
Mimikatz is a security research suite designed for auditing Windows authentication and managing system security configurations. It provides a comprehensive framework for extracting sensitive credentials, manipulating process privileges, and managing digital identity assets directly from system memory or offline memory dumps. The project distinguishes itself through advanced system-level exploitation techniques, including runtime process injection, API hooking, and the ability to bypass cryptographic export restrictions. It features a specialized toolkit for Kerberos protocol operations, allow
Tool for Windows security auditing and credential extraction.
PEASS-ng is a Linux privilege escalation scanner and post-exploitation enumeration tool. It identifies security vulnerabilities and misconfigurations on Linux systems that could lead to unauthorized elevated access. The tool functions as a security audit utility that discovers system weaknesses and sensitive information after initial access is gained. It scans operating systems to identify specific privilege escalation paths. Findings are converted into structured security audit reports. The tool supports exporting scan results into JSON, HTML, and PDF formats for formal analysis and documen
Comprehensive privilege escalation enumeration tool for Windows/Linux.
Pwntools is a Python-based framework designed for rapid prototyping and automation in binary exploitation, reverse engineering, and security research. It serves as a comprehensive toolkit for interacting with local and remote processes, providing the primitives necessary to manage complex exploit workflows and streamline security analysis tasks. The framework distinguishes itself through its specialized capabilities for binary manipulation and automated exploit construction. It includes dedicated utilities for parsing executable file formats, assembling and disassembling machine code, and gen
Rapid framework for exploit development and CTF challenges.
windows-kernel-exploits Windows平台提权漏洞集合
Collection of Windows kernel-mode exploit code.
how2heap is an educational resource and technical testbed for learning heap-based vulnerabilities and memory allocator internals. It provides a collection of source code examples and binaries that serve as a laboratory for studying memory corruption techniques specifically targeting the glibc malloc implementation. The project focuses on the development of exploit primitives, such as tcache poisoning and double frees, to redirect program execution. It includes a suite of implementations for bypassing memory protections and manipulating heap metadata to achieve arbitrary memory writes. The fr
Offers a technical testbed for developing and testing primitives like tcache poisoning and double frees.
LinEnum is a suite of security utilities for auditing Linux systems, scanning for privilege escalation paths, and enumerating local vulnerabilities. It functions as a system security audit tool, a local enumeration utility, and a scanner for identifying misconfigurations that could allow a user to gain root access. The project includes specialized auditing for containerized environments, specifically detecting Docker and LXC signatures to identify potential escape vectors to the host system. Its broader capabilities cover the analysis of kernel versions, the identification of SUID binaries a
Script for Linux privilege escalation enumeration.
UACME is a set of specialized tools designed to audit security configurations, escalate user privileges, and circumvent access control restrictions on Windows systems. It functions as a utility for executing commands with elevated privileges by bypassing User Account Control restrictions. The project includes a configuration auditor used to extract and analyze system settings to identify security misconfigurations and vulnerabilities. It provides a collection of techniques for gaining administrative rights on a host. The toolset covers a wide range of privilege escalation and security auditi
Comprehensive collection of UAC bypass techniques for Windows.
linux-exploit-suggester is a diagnostic utility and vulnerability scanner designed to identify potential kernel exploits on Linux systems. It functions as a privilege escalation auditor by matching system information and kernel versions against a database of known security flaws. The tool differentiates itself by filtering and ranking exploits based on specific system properties and runtime security configurations. It evaluates kernel hardening settings, such as memory protection mechanisms, to discard inapplicable exploits and prioritize candidates by their probability of success. The softw
Tool to suggest potential Linux kernel exploits for a system.
Peda este o suită de instrumente de securitate și un framework de dezvoltare a exploit-urilor conceput pentru analiză binară, automatizarea debugger-ului și inspecția memoriei. Acesta funcționează ca un set de scripturi Python care extind un debugger pentru a automatiza analiza fișierelor compilate și inspecția memoriei proceselor. Proiectul oferă utilitare specializate pentru cercetarea coruperii memoriei, inclusiv un utilitar de generare a payload-urilor pentru crearea de tipare ciclice în vederea descoperirii buffer overflow-urilor și un gadget finder pentru a localiza secvențe de return-oriented programming (ROP) în binare. Se diferențiază oferind un instrument de vizualizare care transformă datele brute din registre, dezasamblare și memorie în text colorat pentru a simplifica analiza stărilor CPU. Framework-ul acoperă o gamă largă de capabilități, inclusiv analiza de securitate binară pentru detectarea protecțiilor, scanarea memoriei prin expresii regulate și capacitatea de a mapa mediile proceselor direct din kernel-ul sistemului. Include, de asemenea, instrumente pentru modificarea adreselor de memorie și generarea de șabloane de shellcode.
Assistance tool for exploit development within GDB.
linux-kernel-exploits Linux平台提权漏洞集合
Curated list of Linux kernel exploit code.
This project is a set of specialized utilities for Windows vulnerability assessment and patch management auditing. It functions as a vulnerability scanner and exploit suggester that analyzes installed updates to identify missing security patches and their corresponding known vulnerabilities. The system distinguishes itself by matching missing updates against a consolidated vulnerability database to recommend specific publicly available exploits. It maintains accuracy by synchronizing remote security bulletins into a local database and cross-referencing identified gaps against official update
Tool for identifying missing patches and potential exploits.
dirtyfrag este un proof-of-concept de exploit pentru escaladarea privilegiilor în kernel-ul Linux. Acesta vizează vulnerabilitățile de scriere în page-cache pentru a ridica permisiunile utilizatorului la niveluri administrative de root. Proiectul demonstrează un lanț de exploit determinist care utilizează proof-of-concept-uri funcționale pentru vulnerabilități în implementarea protocolului xfrm-ESP și mecanismul RxRPC. Prin înlănțuirea acestor vulnerabilități de corupere a memoriei, exploit-ul obține acces root fără a se baza pe condiții de cursă (race conditions) bazate pe timing. Instrumentul acoperă manipularea memoriei kernel-ului și dezvoltarea de lanțuri de exploit pentru a testa escaladarea locală a privilegiilor și a efectua cercetări privind vulnerabilitățile Linux.
Exploit for Linux kernel privilege escalation.
This project is a proof of concept implementation for CVE-2026-31431, serving as a local privilege escalation tool for the Linux kernel. It functions as an exploit that allows a standard user account to obtain root permissions. The tool demonstrates a kernel page cache attack, where root access is achieved by writing shellcode into the cached pages of a privileged binary. This process manipulates how the Linux kernel handles page caches to execute code with elevated permissions. The repository covers areas of Linux security research, including kernel memory corruption analysis and local priv
Exploit for Kubernetes privilege escalation.
Unicorn este o colecție de utilitare pentru generarea de fișiere HTA malițioase, macro-uri VBA, comenzi PowerShell codificate și framework-uri de injectare de shellcode rezidente în memorie. Acesta oferă instrumente pentru a crea payload-uri concepute pentru a obține execuția de cod la distanță prin ocolirea controalelor de securitate. Proiectul se concentrează pe transformarea documentelor Office în arme prin macro-uri și formule VBA, generarea de vectori de atac HTA și crearea de payload-uri PowerShell codificate. Include un framework de injectare de shellcode pentru a împacheta shellcode-ul extern pentru execuție directă în memoria sistemului. Setul de instrumente acoperă conversia binar-la-base64 pentru transferuri de fișiere bazate pe certificate și metode pentru evitarea detectării bazate pe disc. Include, de asemenea, capabilități pentru codificarea scripturilor PowerShell și atacuri de downgrade de versiune pentru a ocoli politicile de execuție și restricțiile de securitate.
Generator for shellcode across various attack vectors.
:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
Repository of various kernel-level exploit techniques.
UAC bypass, Elevate, Persistence methods
Collection of Windows privilege escalation techniques.
Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
Techniques for escalating local privileges to administrator.
Advanced Windows privilege escalation tool for modern systems.
Privilege escalation tool targeting the Windows Print Spooler.