Exploitation Tools

997 tools
Win7Blue
Win7Blue
Open Source Exploitation

Scan/Exploit - EternalBlue MS17-010 - Windows 7 32/64 Bits
WindowSpy
WindowSpy
Open Source Exploitation Post-Exploitation

WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
WinPwn
WinPwn
Open Source Exploitation Post-Exploitation

Automation for internal Windows Penetrationtest / AD-Security
wmiexec2
wmiexec2
Free Exploitation

wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures fro…
WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956
WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956
Free Exploitation Web Application

WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a Wo…
wordpress-malware
wordpress-malware
Free Exploitation Web Application

Collection of malware files found on hacked WordPress sites
Wordpress-XMLRPC-Brute-Force-Exploit
Wordpress-XMLRPC-Brute-Force-Exploit
Free Exploitation Web Application

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield
worm-ai
worm-ai
Free Exploitation

Worm-AI uses a reverse-engineered Grok API wrapper originally developed here:
WPAxFuzz
WPAxFuzz
Open Source Exploitation Scanning & Enumeration

A full-featured open-source Wi-Fi fuzzer
wpprobe
wpprobe
Open Source Exploitation Reconnaissance

A fast WordPress plugin enumeration tool
write-ups
write-ups
Free Exploitation

Dans une tentative un peu vaine d'organiser le chaos, de donner une forme toute temporaire à tout ça, voici un index... (-----
Writeups
Writeups
Free Exploitation Post-Exploitation

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).
wscan
wscan
Free Exploitation Scanning & Enumeration

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
wwwtree
wwwtree
Open Source Exploitation

A utility for quickly and easily locating, web hosting and transferring resources (e.g., exploits/enumeration scripts) from your filesystem …
X-ZIGZAG
X-ZIGZAG
Open Source Exploitation

X-ZIGZAG is a lightweight RAT engineered for stealth, operating exclusively in RAM.
XENA
XENA
Free Exploitation Post-Exploitation

XENA is an innovative C2 made fully in Go. With hacking automation features.
XenSpawn
XenSpawn
Open Source Kali Exploitation

Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)
xhunter
xhunter
Free Exploitation

Android Penetration Tool [ RAT for Android ]
xkinfoscan
xkinfoscan
Open Source Exploitation

xkInfoScan 是一款集成化的网络信息收集与安全扫描工具,支持 IP / 域名 / URL /信息追踪多维度目标探测,涵盖目录扫描、CMS 识别、漏洞检测、信息泄露挖掘、CDN 检测等核心功能,适用于渗透测试前期信息收集、网络资产测绘及安全风险评估场景。
xmir-patcher
xmir-patcher
Free Exploitation

Firmware patcher for Xiaomi routers
XMT
XMT
Open Source Exploitation

eXtensiable Malware Toolkit: Full Featured Golang C2 Framework with Awesome Features
xray
xray
Free Exploitation Scanning & Enumeration

一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
xrop
xrop
Free Exploitation

Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
xssrecon
xssrecon
Free Exploitation Reconnaissance

XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characters …