Snowty's Stars
zijie0/HumanSystemOptimization
健康学习到150岁 - 人体系统调优不完全指南
trickest/cve
Gather and update all available and newest CVEs with their PoC.
FeeiCN/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
gwen001/pentest-tools
A collection of custom security tools for quick needs.
mgeeky/Penetration-Testing-Tools
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
chvancooten/follina.py
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
al0ne/suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
ly4k/PwnKit
Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation
UzJu/Cloud-Bucket-Leak-Detection-Tools
六大云存储,泄露利用检测工具
veracode-research/rogue-jndi
A malicious LDAP server for JNDI injection attacks
r0eXpeR/supplier
主流供应商的一些攻击性漏洞汇总
lal0ne/vulnerability
收集、整理、修改互联网上公开的漏洞POC
kagancapar/CVE-2022-29072
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.
er10yi/MagiCude
分布式端口(漏洞)扫描、资产安全管理、实时威胁监控与通知、高效漏洞闭环、漏洞wiki、邮件报告通知、poc框架
Bonfee/CVE-2022-0995
CVE-2022-0995 exploit
Bonfee/CVE-2022-25636
CVE-2022-25636
yumusb/DNSLog-Platform-Golang
DNSLOG平台 golang
lovechoudoufu/cobaltstrike4.4_cdf
cobaltstrike4.x版本破解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子认证
binganao/vulns-2022
本项目用于搜集 2022 年的漏洞,注意:本项目并不刻意搜集 POC 或 EXP,主要以CVE-2021、CVE-2022 为关键词,包含但不限于漏洞资讯、漏洞复现、漏洞分析、漏洞验证、漏洞利用
C0nd4/OSCP-Priv-Esc
Mind maps / flow charts to help with privilege escalation on the OSCP.
PDWR/AVKiller
利用图形化识别技术快速关闭目标机器上的杀毒软件
Rvn0xsy/linux_dirty
更改后的脏牛提权代码,可以往任意文件写入任意内容,去除交互过程
JMousqueton/PoC-CVE-2022-30190
POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina
pyroxenites/s2-062
远程代码执行S2-062 CVE-2021-31805验证POC
6r6/maicai.ddxq.tools
叮咚买菜相关工具
weishen250/Read_Path
js / html /josn 中获取 泄露的接口 / URL / 未授权路径 获取之后尝试访问
YhQIAO/PointCloudSVMDemo
三维点云激光分类(建筑,树木)
dorkerdevil/Log-4-JAM
Log4j JNDI inj. vuln scanner
CMICAI/DINK
点云深度学习框架 | Point cloud Deep learning Framework
sentinelblue/CVE-2022-29072
** DISPUTED ** 7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll and a heap overflow. The command runs in a child process under the 7zFM.exe process, NOTE: multiple third parties have reported that no privilege escalation can occur.