Pinned Repositories
-v1.0
冰蝎v1.0
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
1135-CobaltStrike-ToolKit
about CobaltStrike
2018-BlackHat-Tools-List
2018 BlackHat Tools List
AD_Enumeration_Hunt
adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
AhMyth-Android-RAT
Android Remote Administration Tool
LIEF
LIEF - Library to Instrument Executable Formats
S4UTomato
Escalate Service Account To LocalSystem via Kerberos
UsbKeyboardDataHacker
USB键盘流量包取证工具 , 用于恢复用户的击键信息
Exi1Sh0w's Repositories
Exi1Sh0w/Automation-scripts
Repo for creating awesome automation scripts to make my panda lazier
Exi1Sh0w/Awesome-GPT-Agents
A curated list of GPT agents for cybersecurity
Exi1Sh0w/Awesome-POC
一个各类漏洞POC知识库
Exi1Sh0w/Container-Vulnerability-Exploit
容器安全漏洞的分析与复现
Exi1Sh0w/crowsec
视频课件和工具分享
Exi1Sh0w/daydayExp-pocs
daydayExp的漏洞POC仓库,慢慢更新...
Exi1Sh0w/demo
🤖 Fork me to try out Dependabot
Exi1Sh0w/exp-hub
Nday漏洞复现:打点漏洞、提权漏洞、内网漏洞
Exi1Sh0w/Exploit-Street
Complete list of LPE exploits for Windows (starting from 2023)
Exi1Sh0w/falco
Cloud Native Runtime Security
Exi1Sh0w/FallingSword
一个无聊的小工具
Exi1Sh0w/Goby
Exi1Sh0w/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Exi1Sh0w/I-Wanna-Get-All
OA漏洞利用工具
Exi1Sh0w/LitterBox
sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment
Exi1Sh0w/MDPOCS
猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......
Exi1Sh0w/MyShellcodeLoader
免杀与恶意软件开发
Exi1Sh0w/nginx-ultimate-bad-bot-blocker
Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
Exi1Sh0w/nysm
nysm is a stealth post-exploitation container.
Exi1Sh0w/owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering.
Exi1Sh0w/Penetration-List
Penetration-List: A comprehensive resource for testers, covering all types of vulnerabilities and materials used in Penetration Testing. Includes payloads, dorks, fuzzing materials, and offers in-depth theory sections. Visit our Medium profile for more information.
Exi1Sh0w/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
Exi1Sh0w/poc-doc
Exi1Sh0w/reveng_rtkit
Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypass infamous rkhunter antirootkit.
Exi1Sh0w/ScopeSentry
ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点
Exi1Sh0w/SessionExec
Execute commands in other Sessions
Exi1Sh0w/vanir
Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system. By default, Vanir pulls up-to-date CVEs from Open Source Vulnerabilities (OSV) together with their corresponding signatures so that users can transparently scan missing patches for an up-to-date list of CVEs.
Exi1Sh0w/waf-bypass
Check your WAF before an attacker does
Exi1Sh0w/watchvuln
一个高价值漏洞采集与推送服务 | collect valueable vulnerability and push it
Exi1Sh0w/webshell-1
This is a webshell open source project