Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

Exploit PoC for CVE-2024-32002

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Remote command execution vulnerability scanner for Log4j.

CVE-2024-32002 RCE PoC

Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container

Crascan is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner.

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

POC for CVE-2020-9484

local poc for CVE-2024-32002

POC - CVE-2024-21534 Jsonpath-plus vulnerable to Remote Code Execution (RCE) due to improper input sanitization

log4shell (CVE-2021-44228) scanning tool

Obtain RCE by poisoning .vscode folder

my tools that i use for bug hunter

OWASP Security Training & Penetration Testing Lab

FreePBX CVE-2025-57819 lab (Docker) + Nuclei POC for unauth SQLi (time-based).

CVE-2025-3515 WordPress lab for Drag and Drop Multiple File Upload for CF7: Dockerized PoC & Nuclei testing

Script for checking CVE-2024-6387 (regreSSHion)