Pinned Repositories
Attack_Code
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
Docker-Release-Agent-Escape
Docker 逃逸 Release Agent 利用始末
ebpf_cilium_starter
cilium ebpf common starter template for go.
k8spider
Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Verified IP discovery
OpenAI-Platform-API
[DEPRECATED WARNING] Add SecretKey List it and Delete it API SDK
public-nuclei-template
Esonhugh self-maintained-nuclei-templates public version. Use this as ~/nuclei-templates/local/esonhugh-public-nuclei, nuclei will add automatically when scanning and never conflict to other nuclei template.
SpringCloudHeapdump
anonymous to cluster-admin via Heapdump.
sshd_backdoor
/root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
WeaponizedVSCode
A VSCode Workspace based hacking environment utils. Starting your Note-Driven Hacking experience. Checkout the following link to sample of HackThebox mist.htb
yapi-rce-webshell
Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
Esonhugh's Repositories
Esonhugh/Attack_Code
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
Esonhugh/k8spider
Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Verified IP discovery
Esonhugh/public-nuclei-template
Esonhugh self-maintained-nuclei-templates public version. Use this as ~/nuclei-templates/local/esonhugh-public-nuclei, nuclei will add automatically when scanning and never conflict to other nuclei template.
Esonhugh/WeaponizedVSCode
A VSCode Workspace based hacking environment utils. Starting your Note-Driven Hacking experience. Checkout the following link to sample of HackThebox mist.htb
Esonhugh/Gopherus3
Merge that PR 18 about Python3 update.
Esonhugh/CloudPolicy
An Cloud PolicyDocument go parsing library for AWS-like Cloud providers
Esonhugh/flipper_kdf
Flipper zero NFC is mystery. KDF is the simple one in complicated
Esonhugh/my_durdur
Cilium/ebpf Learning idea from boratanrikulu/durdur
Esonhugh/TicketMaster
Here is useful scripts collections. You can forge tickets locally with secret keys or certificates. It's useful when you want backdoor/persistence with opsec
Esonhugh/gitlab_honeypot
CVE-2023-7028 killer
Esonhugh/Esonhugh
my description
Esonhugh/insecure-rancher-cli
Insecure rancher CLI with default v3 api
Esonhugh/ReverseShellPayloads
Esonhugh/aliyun-system-managed
aliyun system managed policy crawler
Esonhugh/ChatGPT-Next-Web
A cross-platform ChatGPT/Gemini UI (Web / PWA / Linux / Win / MacOS). 一键拥有你自己的跨平台 ChatGPT/Gemini 应用。
Esonhugh/cnext-exploits
Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()
Esonhugh/go-cli-template-v2
A Golang cli template based on Cobra Viper Survey...
Esonhugh/WeaponziedVSCode-Example-MIST.HTB
Weaponized VSCode Template Example (Release On Machine Expired)
Esonhugh/Beacon_Source
not a reverse-engineered version of the Cobalt Strike Beacon
Esonhugh/friends
friends wall with new skeleton
Esonhugh/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :)
Esonhugh/git_rce
Exploit PoC for CVE-2024-32002
Esonhugh/kubernetes-json-schema
JSON Schemas for every version of every object in every version of Kubernetes
Esonhugh/linpeas-cloud
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Esonhugh/microservices-global
Esonhugh/NTHW
Not The Hidden Wiki - The largest repository of links related to cybersecurity
Esonhugh/OSCP-Note-Template
Exam note template for OSCP.
Esonhugh/pyftp
a distributed python FTP server of https://github.com/Red-Eyed/python_ftp_server/ use with `pipx install git+https://github.com/Esonhugh/pyftp.git` and `ftpserver.py -h`
Esonhugh/SeaMoon
月海 (Sea Moon) 是一款 FaaS/BaaS 实现的 Serverless 代理/云渗透工具,致力于开启云原生的渗透模式。
Esonhugh/toml11
TOML for Modern C++