Pinned Repositories
-
微信收藏的文章
-ysuserial
此项目为su18大佬的仓库镜像,如有问题可发issuse删库
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
burp-E-cology-login
CVE-2022-26134
「💥」CVE-2022-26134 - Confluence Pre-Auth RCE
CVE-2022-26136
Confluence Pre-Auth Remote Code Execution via OGNL Injection (CVE-2022-26134)
LandrayExploit
蓝凌OA漏洞利用工具/前台无条件RCE/文件写入
OA-EXPTOOL
OA综合利用工具,集合将近20款OA漏洞批量扫描
Tentacle
Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.
ZeroTrust
Simple script to deploy easily Zero Trust in an internal Network
30579096's Repositories
30579096/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
30579096/As-Exploits
**蚁剑后渗透框架
30579096/atexec-pro
Fileless atexec, no more need for port 445
30579096/bk-cmdb
蓝鲸智云配置平台(BlueKing CMDB)
30579096/bk-sops
蓝鲸智云标准运维(SOPS)
30579096/BurpAPIFinder
攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
30579096/curlrevshell
Kooky cURL-powered replacement for reverse shell via /dev/tcp
30579096/CVE-2023-50164-ApacheStruts2-Docker
Vulnerable docker container for Apache Struts 2 RCE CVE-2023-50164
30579096/CVE-2024-20931
The Poc for CVE-2024-20931
30579096/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
30579096/DecryptTools
DecryptTools-综合解密
30579096/frp-
基于原版 frp 二开, 添加了一些小功能
30579096/Godzilla-Suo5MemShell
使用 Godzilla 一键注入 Suo5 内存马
30579096/gost
GO Simple Tunnel - a simple tunnel written in golang
30579096/HaE
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
30579096/HrmsTamper
适用于某EHR&HRM的加解密工具,可直接用于sqlmap
30579096/jar-analyzer
Jar Analyzer - 一个JAR包分析工具,批量分析搜索,方法调用关系搜索,字符串搜索,Spring分析,CFG分析,JVM Stack Frame分析,远程分析Tomcat,进阶表达式搜索,自定义SQL查询,字节码查看,命令行分析,使用简易RASP保护
30579096/jdwp-shellifier
30579096/jndiExploit-beta
魔改版,实现冰蝎直连内存马,无需修改冰蝎客户端
30579096/JNDIMap
JNDI 注入利用工具, 支持 RMI 和 LDAP 协议, 包含多种高版本 JDK 绕过方式
30579096/JYso
It can be either a JNDIExploit or a ysoserial.
30579096/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
30579096/MemShell4Spring
Memory Webshell for Spring Web - 适用于 Spring Web 的内存马
30579096/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
30579096/SharpConflux
30579096/SploitScan
SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated proof-of-concept (PoC) exploits.
30579096/spring-boot-demo1
Spring Boot & Spring Cloud & Spring Security Demo Case(Spring学习示例实战项目)
30579096/vArmor
vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.
30579096/WeChatMsg
修改https://github.com/LC044/WeChatMsg 实现离线解密展示聊天记录
30579096/ysomap
A helpful Java Deserialization exploit framework.