Kai5174

Kai5174's Stars

• tennc/webshell

  This is a webshell open source project

  Language:PHP10.3k488315.6k

• TideSec/BypassAntiVirus

  远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

  Language:XSLT4.7k93141.2k

• riramar/Web-Attack-Cheat-Sheet

  Web Attack Cheat Sheet

  4.2k1087650

• zhzyker/exphub

  Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

  Language:Python4.2k14861.1k

• zer0yu/Awesome-CobaltStrike

  List of Awesome CobaltStrike Resources

  4.1k1013742

• newpanjing/simpleui

  A modern theme based on vue+element-ui for django admin.一款基于vue+element-ui的django admin现代化主题。全球20000+网站都在使用！喜欢可以点个star✨

  Language:Python3.6k64363679

• GrrrDog/Java-Deserialization-Cheat-Sheet

  The cheat sheet about Java Deserialization vulnerabilities

  3.1k1379597

• r0eXpeR/redteam_vul

  红队作战中比较常遇到的一些重点系统漏洞整理。

  2.5k803466

• knownsec/ksubdomain

  无状态子域名爆破工具

  Language:Go2.3k3560281

• gh0stkey/Web-Fuzzing-Box

  Web Fuzzing Box - Web 模糊测试字典与一些Payloads

  Language:HTML2.3k331380

• lz520520/railgun

  2.1k30118252

• lgandx/PCredz

  This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

  Language:Python2.1k10236410

• w-digital-scanner/w13scan

  Passive Security Scanner (被动式安全扫描器)

  Language:Smarty1.9k48502367

• xl7dev/WebShell

  Webshell && Backdoor Collection

  Language:PHP1.9k5951k

• AV1080p/Hacking-With-Golang

  Golang安全资源合集

  1.8k482349

• LandGrey/webshell-detect-bypass

  绕过专业工具检测的Webshell研究文章和免杀的Webshell

  Language:Classic ASP1.7k473400

• Wh0ale/SRC-experience

  工欲善其事，必先利其器

  Language:HTML1.6k380327

• threedr3am/JSP-WebShells

  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势

  Language:Java1.4k212324

• JackOfMostTrades/gadgetinspector

  A byte code analyzer for finding deserialization gadget chains in Java applications

  Language:Java1k266224

• NickstaDB/SerializationDumper

  A tool to dump Java serialization streams in a more human readable form.

  Language:Java1k715125

• s7ckTeam/Glass

  Glass是一款针对资产列表的快速指纹识别工具，通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹，也可针对IP/IP段或资产列表进行快速的指纹识别。

  Language:Python9901530115

• ahmedkhlief/Ninja

  Open source C2 server created for stealth red team operations

  Language:PowerShell8033431170

• boy-hack/hack-requests

  The hack-requests is an http network library for hackers

  Language:Python465102089

• tanjiti/webshellSample

  webshell sample for WebShell Log Analysis

  Language:PHP417501199

• TeraSecTeam/ary

  Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

  34316656

• dancaron/Django-ORM

  Django-ORM-Standalone Template - Use the power of Django's database functionality in regular python scripts.

  Language:Python3208866

• lcatro/PHP-WebShell-Bypass-WAF

  分享PHP WebShell 绕过WAF 的一些经验 Share some experience about PHP WebShell bypass WAF and Anti-AV

  Language:PHP29611077

• TeraSecTeam/poc-collection

  poc-collection 是对 github 上公开的 PoC 进行收集的一个项目。

  27971103

• DeEpinGh0st/Webshell-bypass-collection

  收集的一些各种语言的免杀webshell

  Language:PHP1013123

• miaoski/xiuyang

  Examples from the book 程序員的自我修養

  Language:C556017