Pinned Repositories
Advanced-Process-Injection-Workshop
awesome-java-security
Java安全☞代码审计/漏洞研究/武器化
beef
The Browser Exploitation Framework Project
cf
云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。
cloud-native-security
云原生安全
CMS
A PHP CMS powered by Laravel 5 and Sentry
CMS-Hunter
CMS漏洞测试用例集合
CodeQL
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Web-Security-Learning
Web-Security-Learning
Marblue's Repositories
Marblue/CodeQL
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
Marblue/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Marblue/Advanced-Process-Injection-Workshop
Marblue/awesome-java-security
Java安全☞代码审计/漏洞研究/武器化
Marblue/beef
The Browser Exploitation Framework Project
Marblue/cf
云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。
Marblue/cloud-native-security
云原生安全
Marblue/django
The Web framework for perfectionists with deadlines.
Marblue/exp
Marblue/frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Marblue/gsdr
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Marblue/Invisi-Shell
Hide your Powershell script in plain sight. Bypass all Powershell security features
Marblue/JavaCodeAudit
Getting started with java code auditing 代码审计入门的小项目
Marblue/Marblue.github.io
Marblue/Micro8
Marblue/nt5src
Source code of Windows XP (NT5). Leaks are not from me. I just extracted the archive and cabinet files.
Marblue/NtlmThief
Extracting NetNTLM without touching lsass.exe
Marblue/oleviewdotnet
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
Marblue/Pentest_Note
渗透测试常规操作记录
Marblue/PHP-binary-bugs
PHP binary bugs advisory
Marblue/php-webshells
Common php webshells. Do not host the file(s) on your server!
Marblue/Proxy-Attackchain
Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)
Marblue/RedTeam-BCS
BCS(北京网络安全大会)2019 红队行动会议重点内容
Marblue/RedTeaming2020
RedTeaming知识星球2020年安全知识汇总
Marblue/sec-chart
安全思维导图集合
Marblue/sec-jobs
信息安全实习和校招的面经、真题和资料 减少安全选手找实习/工作的痛苦
Marblue/SharpWMI
SharpWMI is a C# implementation of various WMI functionality.
Marblue/somepoc
Marblue/threat-intelligence
收集的一些国外能提供提供威胁情报的公司,涵盖网络安全、工控安全、终端安全、移动安全等领域
Marblue/VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接