awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索开源替代品自托管软件博客网站地图
项目关于排名机制媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

100 个仓库

Awesome GitHub RepositoriesExploit Development

Frameworks and resources for learning and executing exploit development.

Explore 100 awesome GitHub repositories matching part of an awesome list · Exploit Development. Refine with filters or upvote what's useful.

Awesome Exploit Development GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • rapid7/metasploit-frameworkrapid7 的头像

    rapid7/metasploit-framework

    38,415在 GitHub 上查看↗

    The framework is a comprehensive penetration testing platform designed for the development, testing, and execution of security exploits. It serves as a research toolkit and automated assessment environment, enabling security professionals to identify and validate vulnerabilities within networked systems and infrastructure through repeatable, standardized procedures. The platform distinguishes itself through a modular architecture that supports reflective payload injection, allowing for the execution of code directly in memory without writing to disk. It utilizes an asynchronous event loop to

    Comprehensive penetration testing framework for vulnerability research and exploitation.

    Rubyhacktoberfest
    在 GitHub 上查看↗38,415
  • gentilkiwi/mimikatzgentilkiwi 的头像

    gentilkiwi/mimikatz

    21,630在 GitHub 上查看↗

    Mimikatz is a security research suite designed for auditing Windows authentication and managing system security configurations. It provides a comprehensive framework for extracting sensitive credentials, manipulating process privileges, and managing digital identity assets directly from system memory or offline memory dumps. The project distinguishes itself through advanced system-level exploitation techniques, including runtime process injection, API hooking, and the ability to bypass cryptographic export restrictions. It features a specialized toolkit for Kerberos protocol operations, allow

    Tool for Windows security auditing and credential extraction.

    C
    在 GitHub 上查看↗21,630
  • carlospolop/peass-ngcarlospolop 的头像

    carlospolop/PEASS-ng

    20,054在 GitHub 上查看↗

    PEASS-ng is a Linux privilege escalation scanner and post-exploitation enumeration tool. It identifies security vulnerabilities and misconfigurations on Linux systems that could lead to unauthorized elevated access. The tool functions as a security audit utility that discovers system weaknesses and sensitive information after initial access is gained. It scans operating systems to identify specific privilege escalation paths. Findings are converted into structured security audit reports. The tool supports exporting scan results into JSON, HTML, and PDF formats for formal analysis and documen

    Comprehensive privilege escalation enumeration tool for Windows/Linux.

    C#
    在 GitHub 上查看↗20,054
  • gallopsled/pwntoolsGallopsled 的头像

    Gallopsled/pwntools

    13,271在 GitHub 上查看↗

    Pwntools is a Python-based framework designed for rapid prototyping and automation in binary exploitation, reverse engineering, and security research. It serves as a comprehensive toolkit for interacting with local and remote processes, providing the primitives necessary to manage complex exploit workflows and streamline security analysis tasks. The framework distinguishes itself through its specialized capabilities for binary manipulation and automated exploit construction. It includes dedicated utilities for parsing executable file formats, assembling and disassembling machine code, and gen

    Rapid framework for exploit development and CTF challenges.

    Pythonassemblybsdcapture-the-flag
    在 GitHub 上查看↗13,271
  • secwiki/windows-kernel-exploitsSecWiki 的头像

    SecWiki/windows-kernel-exploits

    8,679在 GitHub 上查看↗

    windows-kernel-exploits Windows平台提权漏洞集合

    Collection of Windows kernel-mode exploit code.

    Ccollectionsexploitkernel
    在 GitHub 上查看↗8,679
  • shellphish/how2heapshellphish 的头像

    shellphish/how2heap

    8,444在 GitHub 上查看↗

    how2heap is an educational resource and technical testbed for learning heap-based vulnerabilities and memory allocator internals. It provides a collection of source code examples and binaries that serve as a laboratory for studying memory corruption techniques specifically targeting the glibc malloc implementation. The project focuses on the development of exploit primitives, such as tcache poisoning and double frees, to redirect program execution. It includes a suite of implementations for bypassing memory protections and manipulating heap metadata to achieve arbitrary memory writes. The fr

    Offers a technical testbed for developing and testing primitives like tcache poisoning and double frees.

    C
    在 GitHub 上查看↗8,444
  • rebootuser/linenumrebootuser 的头像

    rebootuser/LinEnum

    7,835在 GitHub 上查看↗

    LinEnum is a suite of security utilities for auditing Linux systems, scanning for privilege escalation paths, and enumerating local vulnerabilities. It functions as a system security audit tool, a local enumeration utility, and a scanner for identifying misconfigurations that could allow a user to gain root access. The project includes specialized auditing for containerized environments, specifically detecting Docker and LXC signatures to identify potential escape vectors to the host system. Its broader capabilities cover the analysis of kernel versions, the identification of SUID binaries a

    Script for Linux privilege escalation enumeration.

    Shell
    在 GitHub 上查看↗7,835
  • hfiref0x/uacmehfiref0x 的头像

    hfiref0x/UACME

    7,375在 GitHub 上查看↗

    UACME is a set of specialized tools designed to audit security configurations, escalate user privileges, and circumvent access control restrictions on Windows systems. It functions as a utility for executing commands with elevated privileges by bypassing User Account Control restrictions. The project includes a configuration auditor used to extract and analyze system settings to identify security misconfigurations and vulnerabilities. It provides a collection of techniques for gaining administrative rights on a host. The toolset covers a wide range of privilege escalation and security auditi

    Comprehensive collection of UAC bypass techniques for Windows.

    Cbypass-uaccdll-hijack
    在 GitHub 上查看↗7,375
  • mzet-/linux-exploit-suggestermzet- 的头像

    mzet-/linux-exploit-suggester

    6,528在 GitHub 上查看↗

    linux-exploit-suggester is a diagnostic utility and vulnerability scanner designed to identify potential kernel exploits on Linux systems. It functions as a privilege escalation auditor by matching system information and kernel versions against a database of known security flaws. The tool differentiates itself by filtering and ranking exploits based on specific system properties and runtime security configurations. It evaluates kernel hardening settings, such as memory protection mechanisms, to discard inapplicable exploits and prioritize candidates by their probability of success. The softw

    Tool to suggest potential Linux kernel exploits for a system.

    Shell
    在 GitHub 上查看↗6,528
  • longld/pedalongld 的头像

    longld/peda

    6,130在 GitHub 上查看↗

    Peda is a security tool suite and exploit development framework designed for binary analysis, debugger automation, and memory inspection. It functions as a set of Python scripts that extend a debugger to automate the analysis of compiled files and the inspection of process memory. The project provides specialized utilities for memory corruption research, including a payload generation utility for creating cyclic patterns to discover buffer overflows and a gadget finder to locate return-oriented programming sequences within binaries. It differentiates itself by offering a visualization tool th

    Assistance tool for exploit development within GDB.

    Python
    在 GitHub 上查看↗6,130
  • secwiki/linux-kernel-exploitsSecWiki 的头像

    SecWiki/linux-kernel-exploits

    5,615在 GitHub 上查看↗

    linux-kernel-exploits Linux平台提权漏洞集合

    Curated list of Linux kernel exploit code.

    C
    在 GitHub 上查看↗5,615
  • bitsadmin/wesngbitsadmin 的头像

    bitsadmin/wesng

    4,881在 GitHub 上查看↗

    该项目是一套用于 Windows 漏洞评估和补丁管理审计的专用工具。它作为一个漏洞扫描器和漏洞利用建议工具,通过分析已安装的更新来识别缺失的安全补丁及其对应的已知漏洞。 该系统的独特之处在于,它将缺失的更新与整合后的漏洞数据库进行匹配,从而推荐特定的公开漏洞利用程序。它通过将远程安全公告同步到本地数据库,并将识别出的漏洞与官方更新目录进行交叉引用,来处理补丁替代关系并消除误报,从而保持准确性。 该工具提供了安全表面分析功能,允许用户通过基于严重程度的过滤和安装日期细化来优先处理高风险漏洞。它还包含一个数据库客户端,用于从多个远程源收集和同步安全定义更新。

    Tool for identifying missing patches and potential exploits.

    Pythonexploitmicrosoftpatches
    在 GitHub 上查看↗4,881
  • v4bel/dirtyfragV4bel 的头像

    V4bel/dirtyfrag

    4,845在 GitHub 上查看↗

    dirtyfrag 是一个针对 Linux 内核权限提升的漏洞利用概念验证(PoC)。它针对页缓存写入漏洞,将用户权限提升至管理级 root 权限。 该项目演示了一个确定性的漏洞利用链,利用了 xfrm-ESP 协议实现和 RxRPC 机制中漏洞的功能性概念验证。通过链接这些内存损坏漏洞,该漏洞利用在不依赖基于时间的竞争条件的情况下实现了 root 访问。 该工具涵盖了内核内存操作和漏洞利用链的开发,以测试本地权限提升并进行 Linux 漏洞研究。

    Exploit for Linux kernel privilege escalation.

    C
    在 GitHub 上查看↗4,845
  • theori-io/copy-fail-cve-2026-31431theori-io 的头像

    theori-io/copy-fail-CVE-2026-31431

    3,958在 GitHub 上查看↗

    该项目是 CVE-2026-31431 的概念验证实现,作为 Linux 内核的本地权限提升工具。它作为一种漏洞利用程序运行,允许标准用户帐户获取 root 权限。 该工具演示了内核页缓存攻击,通过将 Shellcode 写入特权二进制文件的缓存页面来获得 root 访问权限。此过程操纵 Linux 内核处理页缓存的方式,以提升权限执行代码。 该仓库涵盖了 Linux 安全研究领域,包括内核内存损坏分析和本地权限提升测试,以验证系统对该特定漏洞的易感性。

    Exploit for Kubernetes privilege escalation.

    Python
    在 GitHub 上查看↗3,958
  • trustedsec/unicorntrustedsec 的头像

    trustedsec/unicorn

    3,917在 GitHub 上查看↗

    Unicorn 是一个用于生成恶意 HTA 文件、VBA 宏、编码 PowerShell 命令和内存驻留 shellcode 注入框架的工具集合。它提供工具来创建旨在通过绕过安全控制来实现远程代码执行的有效载荷。 该项目专注于通过 VBA 宏和公式武器化 Office 文档、生成 HTA 攻击向量以及创建编码的 PowerShell 有效载荷。它包括一个 shellcode 注入框架,用于包装外部 shellcode 以在系统内存中直接执行。 该工具包涵盖了用于基于证书的文件传输的二进制转 Base64 转换,以及避免基于磁盘检测的方法。它还包括用于 PowerShell 脚本编码和版本降级攻击的功能,以绕过执行策略和安全限制。

    Generator for shellcode across various attack vectors.

    Python
    在 GitHub 上查看↗3,917
  • ascotbe/kernelhubAscotbe 的头像

    Ascotbe/Kernelhub

    3,196在 GitHub 上查看↗

    :palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

    Repository of various kernel-level exploit techniques.

    Ccvecve-2021-26868cve-2021-33739
    在 GitHub 上查看↗3,196
  • rootm0s/winpwnagerootm0s 的头像

    rootm0s/WinPwnage

    2,748在 GitHub 上查看↗

    UAC bypass, Elevate, Persistence methods

    Collection of Windows privilege escalation techniques.

    Python
    在 GitHub 上查看↗2,748
  • gtworek/priv2admingtworek 的头像

    gtworek/Priv2Admin

    2,472在 GitHub 上查看↗

    Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

    Techniques for escalating local privileges to administrator.

    在 GitHub 上查看↗2,472
  • beichendream/godpotatoBeichenDream 的头像

    BeichenDream/GodPotato

    2,196在 GitHub 上查看↗

    Advanced Windows privilege escalation tool for modern systems.

    C#
    在 GitHub 上查看↗2,196
  • itm4n/printspooferitm4n 的头像

    itm4n/PrintSpoofer

    2,183在 GitHub 上查看↗

    Privilege escalation tool targeting the Windows Print Spooler.

    Cpentest-toolwindows-privilege-escalation
    在 GitHub 上查看↗2,183
上一个1234…5下一个
  1. Home
  2. Part of an Awesome List
  3. Developer Tools
  4. Exploit Development

探索子标签

  • Shellcode Development KitsTools and frameworks for constructing custom machine code payloads. **Distinct from Exploit Development:** Distinct from Exploit Development: focuses specifically on the manual construction of shellcode payloads rather than general exploit development.