0xf4n9x
CyberSec Enthusiast, Security Researcher, RedTeam, Security Automation, ❣️OpenSource
/dev/null
Pinned Repositories
CDGXStreamDeserRCE
亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
CVE-2021-26084
CVE-2021-26084 Remote Code Execution on Confluence Servers
CVE-2022-1388
CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE
CVE-2022-46169
CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.
CVE-2023-0669
CVE-2023-0669 GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object.
NPS-AUTH-BYPASS
NPS proxy server authentication bypasses vulnerability detection
ShiroMemShellAttack
Shiro利用与内存马安全学习及工具开发
SonicWall_SSL-VPN_EXP
SonicWALL SSL-VPN Web Server Vulnerable Exploit
Zentao-Captcha-RCE
禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞
fofax
FOFAX是一个基于fofa.info的API命令行查询工具
0xf4n9x's Repositories
0xf4n9x/CDGXStreamDeserRCE
亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
0xf4n9x/CVE-2023-0669
CVE-2023-0669 GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object.
0xf4n9x/Zentao-Captcha-RCE
禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞
0xf4n9x/CVE-2022-1388
CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE
0xf4n9x/NPS-AUTH-BYPASS
NPS proxy server authentication bypasses vulnerability detection
0xf4n9x/CVE-2021-26084
CVE-2021-26084 Remote Code Execution on Confluence Servers
0xf4n9x/CVE-2022-46169
CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.
0xf4n9x/CVE-2022-37042
CVE-2022-37042 Zimbra Auth Bypass leads to RCE
0xf4n9x/CVE-2022-24990
CVE-2022-24990 TerraMaster TOS unauthenticated RCE via PHP Object Instantiation
0xf4n9x/DaHuaWPMSinitSessionRCE
大华智慧园区综合管理平台initSession泄漏任意用户创建致使后台任意文件上传漏洞
0xf4n9x/0xf4n9x
About Me
0xf4n9x/0xf4n9x.github.io
0xf4n9x/ShiroMemShellAttack
Shiro利用与内存马安全学习及工具开发
0xf4n9x/clash
A rule-based tunnel in Go.
0xf4n9x/JavaThings
Share Things Related to Java - Java安全漫谈笔记相关内容
0xf4n9x/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
0xf4n9x/ShiroVulnEnv
Shiro漏洞环境
0xf4n9x/subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
0xf4n9x/codeql-zero-to-hero
CodeQL zero to hero blog post series challenges
0xf4n9x/EeveeSpotify
A tweak to get Spotify Premium for free, just like Spotilife
0xf4n9x/extractor-java
CodeQL extractor for java, which don't need to compile java source
0xf4n9x/java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具
0xf4n9x/notion2md-action
convert notion database pages to markdown files for hexo or hugo
0xf4n9x/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
0xf4n9x/package-manager-proxy-settings
记录各个包管理器代理设置坑点。
0xf4n9x/rotateproxy
利用fofa搜索socks5开放代理进行代理池轮切的工具
0xf4n9x/Template
0xf4n9x/Traduzir-paginas-web
Translate your page in real time using Google or Yandex
0xf4n9x/YTLitePlus
A modified version of Youtube for iOS supercharged with YTLite (by @dayanch96) and +20 tweaks
0xf4n9x/YTMusicUltimate
The best tweak for YouTube Music iOS.