Explore Projects
Discover 427 open source projects
Showing 381-400 of 427 projects
chenjj/CORScanner
A fast, open-source CORS misconfiguration vulnerability scanner written in Python.
christophetd/log4shell-vulnerable-app
A vulnerable Spring Boot web application for learning about the Log4Shell vulnerability (CVE-2021-44228).
n0b0dyCN/redis-rogue-server
A proof-of-concept server demonstrating a remote code execution vulnerability in Redis versions up to 5.0.5.
CERT-Polska/Artemis
A modular, open-source vulnerability scanner with automatic report generation capabilities.
XmirrorSecurity/OpenSCA-cli
An open-source software supply chain security solution for detecting dependencies, vulnerabilities, and license compliance.
ycdxsb/PocOrExp_in_Github
A Python tool that automatically collects Proof of Concept (POC) or Exploit (EXP) from GitHub based on CVE IDs.
arthepsy/CVE-2021-4034
PoC for a local privilege escalation vulnerability in the pkexec command of the polkit library (CVE-2021-4034)
Arinerron/CVE-2022-0847-DirtyPipe-Exploit
A root exploit for CVE-2022-0847 (Dirty Pipe), a Linux kernel vulnerability.
bitquark/shortscan
An IIS short filename enumeration tool for security audits and penetration testing.
cisagov/log4j-affected-db
A community-sourced list of software affected by the Log4j vulnerability, for developers to check their projects.
xtiankisutsa/awesome-mobile-CTF
A curated list of mobile-based CTFs, write-ups, and vulnerable Android apps for security researchers and developers.
Mochazz/ThinkPHP-Vuln
A collection of historical vulnerability analyses for the ThinkPHP framework.
yeswehack/vulnerable-code-snippets
Collection of vulnerable PHP code snippets for security research and bug bounty hunting.
Xyntax/1000php
This repository contains 1000 PHP code audit cases from public vulnerability reports prior to 2016.7.
oskarsve/ms-teams-rce
This is a GitHub repository for a security vulnerability in Microsoft Teams that allows for remote code execution.
stephenbradshaw/vulnserver
A vulnerable server used for learning software exploitation, written in C.
pureqh/Hyacinth
This Java-based tool is a collection of vulnerability detection utilities, not focused on AI coding tools.
rustsec/advisory-db
A security advisory database for Rust crates published through crates.io, focused on vulnerability research and reporting.
payatu/diva-android
DIVA Android is a deliberately insecure and vulnerable Android app for security testing and education.
indianajson/can-i-take-over-dns
A list of DNS providers and how to claim vulnerable domains for bug bounty and security research.
Stay in the loop
Get weekly updates on trending AI coding tools and projects.