BACK_TO_BLOG
PoCLandSecurityResearch

Introducing PoCLand: The Underground Exploit Database

What PoCLand is, how it works, and why we built this project to centralize PoCs for known vulnerabilities.

April 1, 2025

// Author

4p0stol
4p0stolContributor

Introducing PoCLand

PoCLand was born out of the need for a centralized place to document Proof of Concepts (PoCs) for known vulnerabilities, with real technical context.

What is a PoC?

A Proof of Concept (PoC) is a script or procedure that demonstrates a vulnerability is exploitable under real conditions. It's not just the CVE on paper — it's the exploit actually working.

Why PoCLand

Existing databases like NVD or Exploit-DB are useful, but they lack deep technical context. PoCLand aims to:

  • Document the attack vector in detail
  • Include multiple PoCs per CVE when they exist
  • Provide reproducible labs to practice
  • Be maintained by the community

How to contribute

You can contribute by submitting a Pull Request to the repository with a new markdown file following the project's frontmatter schema.

yaml
cveId: CVE-YYYY-XXXXX
title: "Technical description"
severity: CRITICAL
author: "YourNick"

Welcome to the underground!