Pinned Repositories
aerospike
aerospike 在线实验环境
ArangoDB
ArangoDB 在线实验环境
ashxLessSpy
ashx China Chopper WebShell
AwesomeXSS
Awesome XSS stuff
bash
bash在线实验环境
bashbunny-payloads
The Official Bash Bunny Payload Repository
Binary-files
调整下载方式,尝试规避域名黑名单。
dirtycow
sonarqube
sonarqube 在线实验环境
thinkphp-RCE-POC-Collection
thinkphp v5.x 远程代码执行漏洞-POC集合
MM0x00's Repositories
MM0x00/ashxLessSpy
ashx China Chopper WebShell
MM0x00/Binary-files
调整下载方式,尝试规避域名黑名单。
MM0x00/thinkphp-RCE-POC-Collection
thinkphp v5.x 远程代码执行漏洞-POC集合
MM0x00/blog
道明君的博客
MM0x00/bypass_disablefunc_via_LD_PRELOAD
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
MM0x00/CMS-Hunter
CMS漏洞测试用例集合
MM0x00/CVE-2018-20250
exp for https://research.checkpoint.com/extracting-code-execution-from-winrar
MM0x00/CVE-2018-8120
CVE-2018-8120 Exploit for Win2003 Win2008 WinXP Win7
MM0x00/DomainCheck
DomainCheck is designed to assist operators with monitoring changes related to their domain names. This includes negative changes in categorization, VirusTotal detections, and appearances on malware blacklists. DomainCheck currently works only with NameCheap.
MM0x00/EarthWorm
Tool for tunnel
MM0x00/Empire
Empire is a PowerShell and Python post-exploitation agent.
MM0x00/hellomyworld
MM0x00/ieaseMusic
网易云音乐第三方
MM0x00/juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
MM0x00/LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
MM0x00/mcreator
Encoded Reverse Shell Generator With Techniques To Bypass AV's
MM0x00/Micro8
MM0x00/mimikatz
A little tool to play with Windows security
MM0x00/NATBypass
一款lcx在golang下的实现
MM0x00/patoolkit
PA Toolkit is a collection of traffic analysis plugins focused on security
MM0x00/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
MM0x00/Scrapy
practice my spider skill
MM0x00/sec-chart
安全思维导图集合
MM0x00/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
MM0x00/struts-scan
Python2编写的struts2漏洞全版本检测和利用工具
MM0x00/struts2-057-exp
s2-057 最新漏洞分析和EXP脚本
MM0x00/WAScan
WAScan - Web Application Scanner
MM0x00/webrtc-ips
Demo: https://diafygi.github.io/webrtc-ips/
MM0x00/weixin_crawler
高效微信公众号历史文章和阅读数据爬虫powered by scrapy
MM0x00/xunfeng
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。