Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
1195777-chrome0day
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
2021_Hvv
2021 hw
2021HVV-
2021HVV情报总结,来源于我的知识库
2021hvv_vul
2021hvv漏洞汇总
2TuBi
t00ls每日签到+域名查询
360tianqingRCE
捕获攻击队0day 360tianqingRCE
3klCon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
CVE-2021-26868
KangD1W2's Repositories
KangD1W2/XSS_Cheat_Sheet_2020_Edition
xss漏洞模糊测试payload的最佳集合 2020版
KangD1W2/JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
KangD1W2/AUTO-EARN
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
KangD1W2/bayonet
bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
KangD1W2/OneForAll
OneForAll是一款功能强大的子域收集工具
KangD1W2/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
KangD1W2/Mars
Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等
KangD1W2/collection-document
Collection of quality safety articles
KangD1W2/vulfocus
🚀Vulfocus 是一个漏洞集成平台,将漏洞环境 docker 镜像,放入即可使用,开箱即用。
KangD1W2/cobra
Source Code Security Audit (源代码安全审计)
KangD1W2/awesome-cybersecurity-blueteam
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
KangD1W2/Mitigating-Web-Shells
Guidance for mitigation web shells. #nsacyber
KangD1W2/SweetPotato
SweetPotato修改版,用于webshell下执行命令
KangD1W2/SecurityManageFramwork
Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
KangD1W2/hack
🔰渗透测试资源库🔰黑客工具🔰维基解密文件🔰木马免杀🔰信息安全🔰技能树🔰数据库泄露🔰
KangD1W2/KangDiW.github.io
KangD1W2/darkarmour
Windows AV Evasion
KangD1W2/Safety-Project-Collection
收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
KangD1W2/Burpsuite-Plugins-Usage
Burpsuite-Plugins-Usage
KangD1W2/WebShell
Webshell && Backdoor Collection
KangD1W2/webshell-1
This is a webshell open source project
KangD1W2/ApkAnalyser
一键提取安卓应用中可能存在的敏感信息。
KangD1W2/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
KangD1W2/JspForAntSword
**蚁剑JSP一句话Payload
KangD1W2/vulstudy
使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。
KangD1W2/CVE-2019-1388
guest→system(UAC手动提权)
KangD1W2/The-Hacker-Playbook-3-Translation
对 The Hacker Playbook 3 的翻译。
KangD1W2/Redcloud
Automated Red Team Infrastructure deployement using Docker
KangD1W2/osprey
KangD1W2/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose