Pinned Repositories
2022-HW-POC
2022 护网行动 POC 整理
2023HW_POC
2023HW漏洞整理,收集漏洞exp,大部分来源网络
cf
云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。
CVE-2022-30206
Exploit for CVE-2022-30206
fscan-Intranet
这是fscan的内网修改版。
kernel_window_hide
内核级别隐藏指定窗口
Mshell
Memshell-攻防内存马研究
PoC-CVE-2021-30632
PoC CVE-2021-30632 - Out of bounds write in V8
scan4all
Vulnerabilities Scan: 15000+PoCs; 20 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty...
SharpDirtyVanity
Sharp DirtyVanity
Phuong39's Repositories
Phuong39/AutoGeaconC2
AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike
Phuong39/autoRebind
Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code
Phuong39/Catcher
Catcher(捕手) 重点系统指纹漏洞验证工具,适用于外网打点,资产梳理漏洞检查。
Phuong39/CHAOS
:fire: CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.
Phuong39/cscan-go
cscan-go 版本,主要用于C段扫描,信息收集、红队横向渗透等...(相信我,点进来不会后悔的!)
Phuong39/dddd
dddd(带带弟弟),是一款支持多种输入格式,主/被动指纹识别且使用简单的供应链漏洞探测工具。协助红队人员快速收集信息,测绘目标资产,寻找薄弱点。支持从Hunter、Fofa批量拉取目标。
Phuong39/dns-grab
Phuong39/docker-xmrig-mo
a tiny docker container for running xmrig-mo
Phuong39/Doge-Gabh_v
Phuong39/EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
Phuong39/ENScan_GO
一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
Phuong39/evilgophish
evilginx2 + gophish
Phuong39/fbdServer-v2
Phuong39/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
Phuong39/go-md6
go-md6 为 md6 摘要, 使用 cgo 方式实现
Phuong39/HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Phuong39/hound
基于golang的渗透测试武器,将web打点部分与常规的漏扫部分进行整合与改进
Phuong39/httpx
Configurable, Community driven, HTTP C2 Profile
Phuong39/IPQuality
A script for IP quality detection
Phuong39/Jie
一款全面而强大的漏洞扫描和利用工具。(愿景)
Phuong39/JYso
It can be either a JNDIExploit or a ysoserial.
Phuong39/LoaderFly
助力每一位RT队员,快速生成免杀木马
Phuong39/merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Phuong39/minica
minica is a small, simple CA intended for use in situations where the CA operator also operates each host where a certificate will be used.
Phuong39/qc_poc
自己写的一些没啥用的poc,辣鸡。
Phuong39/Qscan
轻量化全方位扫描器
Phuong39/stride
Stride is an open-source tool that simplifies the process of setting up and managing red team infrastructure. It provides a user-friendly interface for quickly deploying and configuring various components, including teamservers (Sliver, Mythic, Havoc C2), redirectors (Apache), and phishing campaigns (Gophish, Evilginx3) on DigitalOcean droplets.
Phuong39/Supernova
Real fucking shellcode encryption tool
Phuong39/Tradingview-Indicators
A collection of tradingview indicators & strategies built in pinescript v5
Phuong39/VscanPlus
基于veo师傅的漏扫工具vscan二次开发的版本,开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)