Pinned Repositories
android-security-list
Collection of Android security related resources
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
AssetScan
资产探测工具,检测存活,检测风险端口,常规端口,全端口探测等等,对探测的端口的脆弱面进行安全分析进行
bash_scripting
bash scripting thing !
exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat的漏洞利用脚本,均为亲测可用的脚本文件,优先更新高危且易利用的漏洞利用脚本,最近添加CVE-2020-1938、CVE-2020-2551、CVE-2019-2618、CVE-2019-6340
GitHack
A `.git` folder disclosure exploit
log4j-shell-poc
A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
parse-burp
Burp Scanner XML Parser
Penetration-Testing-Tools
Great collection of my Penetration Testing scripts, tools, cheatsheets collected over years, used during real-world assignments or collected from various good quality sources.
SRE
Hack404-007's Repositories
Hack404-007/0xUBypass
Hack404-007/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
Hack404-007/AUTO-EARN
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
Hack404-007/AutoRepeater
Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数
Hack404-007/Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
Hack404-007/Binary-Learning
二进制安全相关的学习笔记,感谢滴水逆向的所有老师辛苦教学。
Hack404-007/caidao-official-version
**菜刀官方版本,拒绝黑吃黑,来路清晰
Hack404-007/cloudTools
云资产管理工具 目前工具定位是云安全相关工具,目前是两个模块 云存储工具、云服务器工具, 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务器工具主要是针对ecs服务器的管理,查看、执行命令等等
Hack404-007/Content-Discovery-Web-Dir-Bruteforce-wordlists-Collection
Hack404-007/CVE-2022-47966
POC for CVE-2022-47966 affecting multiple ManageEngine products
Hack404-007/cves-info
Hack404-007/DarkNet_ChineseTrading
🚇暗网中文网监控爬虫(DEEPMIX)
Hack404-007/EmailSender
钓鱼邮件便捷发送工具(GUI)
Hack404-007/ExecIT
Execute shellcode files with rundll32
Hack404-007/geektime-books
:books: 极客时间电子书
Hack404-007/img-payloads
Hack404-007/Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
Hack404-007/MiscSecNotes
some learning notes about Web Application Security、 Penetration Test
Hack404-007/NucleiFuzzer
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
Hack404-007/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Hack404-007/secbook
信息安全从业者书单推荐
Hack404-007/Security-Research-1
This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research
Hack404-007/Supershell
Supershell C2 远控平台,基于反向SSH隧道获取完全交互式Shell
Hack404-007/vscan
开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
Hack404-007/vshell
vshell 是一款go编写的主机管理工具 vshell is a Remote Administation tool written in Go (RAT)
Hack404-007/Webshell-loader
ASPX内存执行shellcode,绕过Windows Defender(AV/EDR)
Hack404-007/Windows-INCIDENT-RESPONSE-COOKBOOK
Windows 应急响应手册
Hack404-007/xeno-rat
Xeno-RAT is an open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management. Has features such as HVNC, live microphone, reverse proxy, and much much more!
Hack404-007/Z-Godzilla_ekp
哥斯拉webshell管理工具二次开发规避流量检测设备
Hack404-007/zentaopms_poc
禅道相关poc