Latest CVE PoCs
Demonstrate CVE-2025-24257 with a public PoC for IOGPUFamily kernel heap OOB read/write and panic analysis
Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction.
Zerologon (CVE-2020-1472) Proof-of-Concept application - Critical Active Directory vulnerability exploitation tool.
Demonstrate a proof-of-concept exploit for CVE-2026-2441, a high-risk Chrome use-after-free vulnerability in the Blink CSS engine.
🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.
🛠 Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept.
Automatically push newly disclosed POC information.
🏆 Discover top ML/NLP research by exploring Best Paper winners from major venues (2022-2026) to enhance your understanding of high-impact work.
Versioned PoC dataset collected from GitHub for CVE research and threat intelligence.
VulnWatchdog 是一个自动化的漏洞监控和分析工具。它可以监控 GitHub 上的 CVE 相关仓库,获取漏洞信息和 POC 代码,并使用 GPT 进行智能分析,生成详细的分析报告。
GitHub CVE POC 情报监控系统 · 威胁情报实时推送 · 含优雅 Web UI
VulnWatchdog 是一个自动化的漏洞监控和分析工具。它可以监控 GitHub 上的 CVE 相关仓库,获取漏洞信息和 POC 代码,并使用 GPT 进行智能分析,生成详细的分析报告。
🧠 Automatically collects and updates public Proof-of-Concept (PoC) exploits from poc-in-github.motikan2010.net
一个无可匹敌的傻逼Bug
227+ standalone CVE exploits (69 CISA KEV) validated against real vulnerable software - Log4Shell, Spring4Shell, Struts2, OFBiz, GeoServer, ColdFusion, Nexus, XStream, fastjson, Gradio & more. Pure-Python 3, zero deps, one lab + live-run screenshot per CVE. RCE, auth bypass, SQLi, SSRF, file-read & Linux LPE. For authorized testing.
An autonomous RLM agent that reverses disclosed CVEs from their public patches into local-lab PoCs and Nuclei detection templates.
🚨 Exploit CVE-2025-55182 to demonstrate RCE in React Server Functions, highlighting risks from insecure prototype references in Next.js applications.
Live CVE PoC (Proof-of-Concepts) Aggregator with Smart Search & Threat Intelligence
Recent CVE PoC & reproduction scripts. Focused on high-severity vulnerabilities across Linux kernel, Windows, macOS and more.
🔍 Scan for vulnerabilities with an AI-powered tool that enhances security in your development process, ensuring safety before production.
🔍 Demonstrate the CVE-2025-32463 privilege-escalation flaw in sudo's chroot feature with this minimal, reproducible proof of concept environment.
Privacy-respecting CVE lookup: PoC presence and active-exploitation evidence
Scan Node.js projects for vulnerabilities using OSV.dev data. Use this tool as a command-line interface or a gated step in your CI pipeline.
Test authentication bypass vulnerabilities in cPanel and WHM using this proof of concept exploit tool written in Go.
Exploit CVE-2026-31431 on Linux using a Rust implementation to achieve local privilege escalation via an arbitrary page cache write primitive.
Exploit and detect CVE-2026-31431 vulnerabilities using a static binary that monitors system integrity and bypasses PAM authentication.
Automate Python security research with an LLM agent that scans, exploits, and validates PyPI packages in isolated pipelines.
Gather and update all available and newest CVEs with their POC.
Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
Lab Docker dựng CMS Made Simple 2.2.5 (Wawa) và tái hiện CVE-2018-1000094 (authenticated RCE). Bao gồm hướng dẫn setup, PoC, và tài liệu kiểm thử.
PoC for the Remote Desktop Gateway vulnerability - CVE-2020-0609 & CVE-2020-0610
Proof of Concept exploit for CVE-2025-8088 - WinRAR path traversal vulnerability affecting versions ≤7.12. Educational tool demonstrating ADS-based file extraction bypass. ⚠️ Research purposes only.
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113