NanNnCheng's Stars
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
FeeiCN/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
liamg/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
guyoung/CaptfEncoder
Captfencoder is opensource a rapid cross platform network security tool suite, providing network security related code conversion, classical cryptography, cryptography, asymmetric encryption, miscellaneous tools, and aggregating all kinds of online tools.
olist213/Information_Security_Books
信息安全方面的书籍
Anduin2017/HowToCook
程序员在家做饭方法指南。Programmer's guide about how to cook at home (Simplified Chinese only).
zmap/zgrab2
Fast Go Application Scanner
SPuerBRead/Bridge
无回显漏洞测试辅助平台,平台使用Java编写,提供DNSLOG,HTTPLOG等功能,辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
SafeGroceryStore/MDUT
MDUT - Multiple Database Utilization Tools
pmiaowu/BurpFastJsonScan
一款基于BurpSuite的被动式FastJson检测插件
exp1orer/JNDI-Inject-Exploit
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
0x727/ShuiZe_0x727
信息收集自动化工具
projectdiscovery/interactsh
An OOB interaction gathering server and client library
cube0x0/noPac
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
danielbohannon/Invoke-Obfuscation
PowerShell Obfuscator
safe6Sec/Fastjson
Fastjson姿势技巧集合
S3cur3Th1sSh1t/MultiPotato
Liqunkit/LiqunKit_
下架
Mas0nShi/typoraCracker
A extract & decryption and pack & encryption tools for typora.
HackJava/HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
frohoff/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
ybdt/exp-hub
漏洞复现及武器化
govbk/WIKI-POC-EXP
收集
1y0n/AV_Evasion_Tool
掩日 - 免杀执行器生成工具
mvelazc0/PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
HackerDev-Felix/WechatDecrypt
微信消息解密工具
vzex/dog-tunnel
p2p tunnel,(udp mode work with kcp,https://github.com/skywind3000/kcp)
knownsec/Kunyu
Kunyu, more efficient corporate asset collection
inbug-team/InScan
边界打点后的自动化渗透工具