Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
2022-HW-POC
2022 护网行动 POC 整理
AboutSecurity
Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
afrog
afrog 是一款性能卓越、快速稳定、PoC 可定制化的漏洞扫描工具 - A tool for finding vulnerabilities
All-Defense-Tool
本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
AnalyzeTool
快速定位重要代码段
Nmap-manual
This is a guide to the use of nmap tools
PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
Reconator
Automated Recon for Pentesting & Bug Bounty
searx
Privacy-respecting metasearch engine
482949203's Repositories
482949203/2022-HW-POC
2022 护网行动 POC 整理
482949203/afrog
afrog 是一款性能卓越、快速稳定、PoC 可定制化的漏洞扫描工具 - A tool for finding vulnerabilities
482949203/Banli
Banli-高危资产识别和高危漏洞扫描
482949203/blueming
备份文件扫描,并自动进行下载
482949203/cf
云环境利用框架 Cloud Exploitation Framework 方便红队人员在获得 AK 的后续工作
482949203/CodeIgniter-session-unsign
Command line tool to fetch, decode and brute-force CodeIgniter session cookies by guessing secret keys.
482949203/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.
482949203/CSAgent
CobaltStrike 4.x通用白嫖及汉化加载器
482949203/dismember
:knife: Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
482949203/frpmgr
Windows 平台的 FRP GUI 客户端 / A user-friendly desktop GUI client for FRP on Windows.
482949203/gold-miner
🥇掘金翻译计划,可能是世界最大最好的英译中技术社区,最懂读者和译者的翻译平台:
482949203/gshark
Scan for sensitive information easily and effectively.
482949203/heartsk_community
Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描
482949203/Learn-Web-Hacking
Study Notes For Web Hacking / Web安全学习笔记
482949203/MYExploit
OAExploit一款基于产品的一键扫描工具。
482949203/nacs
事件驱动的渗透测试扫描器 Event-driven pentest scanner
482949203/NoNetCmdEcho-FileW.e
应对渗透中极限环境下命令回显 & 文件落地
482949203/OneListForAll
Rockyou for web fuzzing
482949203/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
482949203/PoC-2
Advisories, proof of concept files and exploits that have been made public by @pedrib.
482949203/scan4all
Vulnerabilities Scan;15000+PoC漏洞扫描;18种应用密码爆破;7000+Web指纹;146种协议90000+规则Port扫描;Fuzz、HW打点、BugBounty神器...
482949203/Serein
【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022-26134和DedeCMS v5.7.87 SQL注入 CVE-2022-23337。
482949203/slidev
Presentation Slides for Developers
482949203/SMSBoom
短信轰炸/短信测压/ | 一个健壮免费的python短信轰炸程序,专门炸坏蛋蛋,百万接口,多线程全自动添加有效接口,支持异步协程百万并发,全免费的短信轰炸工具!!高一美术生开发全网首发!!
482949203/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
482949203/UACME
Defeating Windows User Account Control
482949203/vscan
开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
482949203/WEF
Wi-Fi Exploitation Framework
482949203/windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
482949203/X-AV
X系列安全工具-AV免杀框架-BypassAV