Pinned Repositories
2022-HW-POC
2022 护网行动 POC 整理
AmsiBypassHookManagedAPI
A new AMSI Bypass technique using .NET ALI Call Hooking.
awesome-python-cn
Python资源大全中文版,包括:Web框架、网络爬虫、模板引擎、数据库、数据可视化、图片处理等,由「开源前哨」和「Python开发者」微信公号团队维护更新。
awesome-python-login-model
😮python模拟登陆一些大型网站,还有一些简单的爬虫,希望对你们有所帮助❤️,如果喜欢记得给个star哦🌟
CVE-2020-14645
Weblogic Server CVE-2020-14645 EXP for Python (complete in one step)
CVE-2020-25540
ThinkAdmin CVE-2020-25540 poc
HrmsTamper
适用于某EHR&HRM的加解密工具,可直接用于sqlmap
python3-pty-shells
Python PTY backdoors - full PTY or nothing!
VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
xxme
#Python
Schira4396's Repositories
Schira4396/VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
Schira4396/HrmsTamper
适用于某EHR&HRM的加解密工具,可直接用于sqlmap
Schira4396/CVE-2020-25540
ThinkAdmin CVE-2020-25540 poc
Schira4396/2022-HW-POC
2022 护网行动 POC 整理
Schira4396/AmsiBypassHookManagedAPI
A new AMSI Bypass technique using .NET ALI Call Hooking.
Schira4396/awesome-python-cn
Python资源大全中文版,包括:Web框架、网络爬虫、模板引擎、数据库、数据可视化、图片处理等,由「开源前哨」和「Python开发者」微信公号团队维护更新。
Schira4396/Bankai
Another Go Shellcode Loader using Windows APIs
Schira4396/BehinderClientSource
冰蝎客户端源码-V4.0.2
Schira4396/BurpLoaderKeygen
Schira4396/cve
Schira4396/CVE-2022-22954
CVE-2022-22954 VMware Workspace ONE Access freemarker SSTI 漏洞 命令执行、批量检测脚本、文件写入
Schira4396/DumpHash
一款dump hash工具配合后渗透的利用
Schira4396/ekp
Schira4396/Empire
Empire is a PowerShell and Python 3.x post-exploitation framework.
Schira4396/Frchannel
帆软bi反序列化漏洞利用工具
Schira4396/fuckhoneypot
FuckHoneypot is 去他妈的蜜罐
Schira4396/GoBypass
Golang免杀生成工具
Schira4396/httprequest
Schira4396/InScan
边界打点后的自动化渗透工具
Schira4396/Log4Shell
Check, exploit, generate class, obfuscate, TLS, ACME about log4j2 vulnerability in one Go program.
Schira4396/LyInjector
一款功能强大的应用层反汇编代码注入器,实现了DLL注入,ShellCode注入等功能,是一款不错的后渗透利器。 A powerful application layer disassembly code injector that implements DLL injection, ShellCode injection, and other functions, is a good post penetration tool.
Schira4396/MoAn_Honey_Pot_Urls
X安蜜罐用的一些存在JSonp劫持的API
Schira4396/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Schira4396/PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
Schira4396/python-shellcode-loader
python免杀shellcode加载器 加密混淆
Schira4396/server
Schira4396/TangledWinExec
PoCs and tools for investigation of Windows process execution techniques
Schira4396/TDOA_RCE
通达OA综合利用工具
Schira4396/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Schira4396/WeblogicTool
WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执行、内存马注入、密码解密等(深信服深蓝实验室天威战队强力驱动)