15 个仓库
Modular platforms for developing and executing exploit logic.
Distinguishing note: Focuses on the framework aspect of exploit development.
Explore 15 awesome GitHub repositories matching security & cryptography · Exploit Frameworks. Refine with filters or upvote what's useful.
The framework is a comprehensive penetration testing platform designed for the development, testing, and execution of security exploits. It serves as a research toolkit and automated assessment environment, enabling security professionals to identify and validate vulnerabilities within networked systems and infrastructure through repeatable, standardized procedures. The platform distinguishes itself through a modular architecture that supports reflective payload injection, allowing for the execution of code directly in memory without writing to disk. It utilizes an asynchronous event loop to
Provides a collection of interchangeable components to define complex attack logic.
RouterSploit is an embedded device exploitation framework and vulnerability scanner designed to identify and exploit security flaws in networked embedded hardware and firmware. It provides a centralized toolkit for scanning for known weaknesses and common misconfigurations to gain unauthorized system access. The framework includes an architecture-specific payload generator to create custom binary payloads tailored to the target hardware. It also features an automated brute force tool that uses dictionary-based credential guessing to bypass authentication on hardware devices. The tool covers
Implements a modular platform for developing and executing device-specific exploit logic at runtime.
TheFatRat is a security exploitation framework designed to automate the creation, obfuscation, and deployment of payloads for penetration testing. It functions as a comprehensive toolkit that streamlines the exploitation lifecycle, enabling users to generate malicious executables, manage network listeners, and execute post-exploitation tasks through a unified command-line interface. The framework distinguishes itself by integrating various third-party exploitation utilities into a single, orchestrated workflow. It provides specialized capabilities for embedding code into legitimate binaries a
Orchestrates the configuration of listeners and the creation of payloads to simplify security testing tasks.
Sn1per is a vulnerability management platform and penetration testing orchestrator designed to automate reconnaissance, vulnerability scanning, and exploit verification. It functions as a dockerized security toolkit that coordinates multiple tools into a unified automated pipeline to identify security flaws across network and web assets. The platform features an attack surface manager for discovering internet-facing assets through OSINT, DNS enumeration, and certificate transparency. It distinguishes itself with an AI-powered security analyzer that uses large language models to summarize scan
Orchestrates the end-to-end security pipeline from reconnaissance to exploit verification to streamline penetration testing.
ipwndfu 是一套软件实用程序,旨在利用 iOS Bootrom 来实现未签名代码执行和固件操纵。该项目提供的工具可将 Apple 设备置于 pwned DFU 状态,从而允许系统绕过安全启动签名。 该工具包包括基于硬件的解密能力,使用连接设备的唯一密钥在受限更新模式下解密数据。它还提供了用于从硬件中提取系统 ROM 和闪存以进行离线安全分析的实用程序。 该软件涵盖了更广泛的硬件利用领域,包括通过绕过签名检查进行固件降级,以及通过 USB 传递漏洞利用以触发内存损坏。
Implements bootrom-level hardware exploits to execute unsigned code on iOS devices in DFU mode.
Undecimus is an iOS jailbreak tool and firmware exploit utility designed to remove software restrictions and elevate system privileges on devices running iOS 11.0 through 12.4. It serves as a software implementation for bypassing system limits and performing unauthorized system modifications. The project functions as an installer for third-party package managers and substrates, enabling the deployment of alternative application stores. It also includes system recovery tools to diagnose errors and repair corrupted system packages following firmware modifications. The toolset covers low-level
Leverages iOS-specific kernel vulnerabilities to bypass system limits and allow unauthorized modifications.
palera1n is an iOS jailbreak tool that exploits a permanent hardware vulnerability in the bootrom of A8 through A11 Apple devices running iOS 15.0 or later, granting root access for system customization and third-party software installation. The tool also extends this jailbreak technique to Apple T2-equipped Macs running bridgeOS 5.0 or later, providing system-level access and modification capabilities on those devices. The tool offers two distinct jailbreak environments: a Rootless mode that provides system access without modifying the root filesystem, and a Full-root mode that grants unrest
Exploits a permanent hardware vulnerability in the bootrom of A8 through A11 devices.
Peda is a security tool suite and exploit development framework designed for binary analysis, debugger automation, and memory inspection. It functions as a set of Python scripts that extend a debugger to automate the analysis of compiled files and the inspection of process memory. The project provides specialized utilities for memory corruption research, including a payload generation utility for creating cyclic patterns to discover buffer overflows and a gadget finder to locate return-oriented programming sequences within binaries. It differentiates itself by offering a visualization tool th
Provides a modular platform of GDB Python scripts for automating binary analysis and memory inspection.
PhoneSploit-Pro 是一个 Android 漏洞利用和远程管理工具包。它提供了一个系统,用于通过 Android Debug Bridge 协议远程控制 Android 设备并提取数据。 该项目与 Metasploit 集成,以自动化创建和安装有效载荷,建立持久的命令与控制会话。它还包括一个网络设备扫描器,通过探测 TCP 端口来识别本地网络上的活跃 Android 主机。 该工具包涵盖了广泛的管理和取证功能,包括远程 Shell 执行、应用程序管理和硬件状态控制。它能够提取消息和联系人等用户数据,并通过屏幕镜像以及来自设备摄像头的实时音视频流进行实时监控。 该软件包含自动化实用程序,用于检测主机操作系统并安装所需的二进制依赖项。
Automates the integration and deployment of Metasploit payloads to establish remote command-and-control sessions.
Nugget is an iOS system customization tool that applies exploit-based modifications to device configuration files, enabling changes to system appearance and behavior without jailbreaking. It functions as a feature flag toggler, mobile gestalt modifier, and PosterBoard wallpaper manager, allowing users to enable experimental iOS features, modify hardware-level identifiers, and apply custom wallpapers through system file manipulation. The tool distinguishes itself by using the sparserestore or BookRestore exploit to write system files outside normal restore locations, supporting modifications t
Core mechanism for applying unsupported modifications to iOS system files via sparserestore or BookRestore.
AutoSploit is an automated exploitation framework designed for discovering remote hosts and executing exploit modules at scale to establish reverse shells. It functions as a network reconnaissance tool and a remote code execution orchestrator, managing the deployment of attack modules against multiple targets. The system features a proxy-based traffic masker that routes network requests through external servers and rotates HTTP headers and user agents to obscure the source of activity. It allows for custom exploit orchestration through the integration of external attack modules and the manage
Orchestrates listener configurations and custom modules to automate the exploitation of remote services.
w3af is a web penetration testing suite and security audit framework designed to identify and exploit vulnerabilities in web applications. It functions as a vulnerability scanner that crawls targets to find injection points and a fuzzer used to discover hidden endpoints and test input validation. The project distinguishes itself by providing an intercepting HTTP proxy for capturing and modifying traffic, combined with a knowledge-base driven exploitation system. It enables the execution of security exploits to gain remote shell access and supports post-exploitation activities, such as routing
Supports uploading and executing third-party payloads to continue the post-exploitation process.
Apfell 是一个红队框架和命令与控制服务器,专为协作式对抗模拟而设计。它提供了一个集中式基础设施来管理远程代理,并使用消息代理在多个操作系统之间分发任务以实现实时同步。 该系统作为一个分布式代理编排器,允许团队协调复杂的攻击链并同步容器数据。它具有多平台载荷管理器,支持从远程仓库下载和集成自定义代理及命令配置文件。 该平台涵盖对抗模拟管理、分布式命令控制以及使用模块化命令配置来在不同目标环境中保持一致的执行行为。
Integrates third-party agent types and platform-specific command profiles into the operational environment.
ROPgadget is a binary analysis tool and multi-architecture disassembler designed to locate instructional sequences used for return-oriented programming. It functions as an exploit development framework that identifies gadgets within binaries to facilitate the creation of memory corruption exploits. The tool supports cross-architecture binary auditing, processing machine code from x86, ARM, MIPS, and RISC-V. It provides a unified interface for analyzing diverse executable file formats, including ELF, PE, and Mach-O. Its capabilities cover binary vulnerability analysis and exploit payload deve
Functions as a framework for identifying the specific code gadgets necessary to bypass memory protections.
jexboss is a Java deserialization exploit framework and network vulnerability scanner designed to identify and exploit deserialization flaws to achieve remote code execution on target servers. It functions as a suite of tools for delivering payloads and executing system commands on vulnerable remote applications. The project includes a reverse shell orchestrator to establish and maintain persistent remote command connections from exploited targets back to a listener. It also provides post-exploitation automation for managing remote access and updating software on compromised systems. The fra
Functions as a modular platform for scanning and exploiting Java deserialization vulnerabilities.