Pinned Repositories
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
AboutSecurity
Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
burp_nu_te_gen
nuclei模版生成插件
f8x
红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
name-fuzz
针对目标已知信息的字典生成工具
ones
可用于多个网络资产测绘引擎 API 的命令行查询工具
Adinfo
域信息收集工具
Archive
用于备份一些软件安装包
Heimdallr
一款完全被动监听的谷歌插件,用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
postgresql_udf_help
PostgreSQL 提权辅助脚本
No-Github's Repositories
No-Github/Heimdallr
一款完全被动监听的谷歌插件,用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
No-Github/JNDIMonitor
一个LDAP请求监听器,摆脱dnslog平台
No-Github/ApkAnalyser
一键提取安卓应用中可能存在的敏感信息。
No-Github/dumpall
一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出
No-Github/feishu-chatgpt
No-Github/go_proxy_pool
无环境依赖开箱即用的代理IP池
No-Github/Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
No-Github/PKINITtools
Tools for Kerberos PKINIT and relaying to AD CS
No-Github/RouteVulScan
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
No-Github/bash-insulter
Insults the user when typing wrong command
No-Github/CallBackDump
dump lsass进程工具
No-Github/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
No-Github/CF-Worker-Dir
A web directories base on Cloudflare worker.
No-Github/Databasetools
一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
No-Github/FilterJs
Burp的JS API接口过滤插件
No-Github/fingerprintx
Standalone utility for service discovery on open ports!
No-Github/frpCracker
一款golang编写的,批量检测frp server未授权访问、弱token的工具
No-Github/gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
No-Github/hostCollision
一款host碰撞工具
No-Github/iofficeTools
红帆ioffice密码解密工具
No-Github/ja3box
extract ja3(s) when sniffing or from a pcap.
No-Github/LocalPotato
No-Github/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
No-Github/PortBender
TCP Port Redirection Utility
No-Github/ProxyVulns
[ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-31207 Exploit Chains.
No-Github/RabR
Redis-Attack By Replication (通过主从复制攻击Redis)
No-Github/RasmanPotato
Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
No-Github/SCFProxy
A proxy tool based on cloud function.
No-Github/ShiroExp
shiro综合利用工具
No-Github/SpringBootExploit
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。