Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
1book
《Web安全之机器学习入门》
android_vuln_poc-exp
This project contains pocs and exploits for android vulneribilities
antSword
AntSword is a cross-platform website management toolkit.
Audit-Learning
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
awesome
:sunglasses: Curated list of awesome lists
awesome-cve-poc
✍️ A curated list of CVE PoCs.
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
Blasting-Dictionary
Web安全测试中常用的爆破字典,包括网站后台、文件包含、WebShell密码、常用管理员用户名及密码等等!
ivideo
一个可以观看国内主流视频平台所有视频的客户端(Mac、Windows、Linux),包括 VIP 资源
StevenKSaint's Repositories
StevenKSaint/Blasting-Dictionary
Web安全测试中常用的爆破字典,包括网站后台、文件包含、WebShell密码、常用管理员用户名及密码等等!
StevenKSaint/awesome-cve-poc
✍️ A curated list of CVE PoCs.
StevenKSaint/Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
StevenKSaint/awvs_190703137
Docker Awvs
StevenKSaint/BurpSuite-collections
BurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦
StevenKSaint/bylibrary
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
StevenKSaint/CVE-2019-0232
Apache Tomcat Remote Code Execution on Windows
StevenKSaint/CVE-2019-0708
Scanner PoC for CVE-2019-0708 RDP RCE vuln
StevenKSaint/CVE-2019-1132
EoP POC for CVE-2019-1132
StevenKSaint/elevationstation
elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative
StevenKSaint/Exploit-Dictionary
StevenKSaint/geacon_plus
CobaltStrike beacon written in golang
StevenKSaint/GScan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
StevenKSaint/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
StevenKSaint/MemoryShellLearn
分享几个直接可用的内存马,记录一下学习过程中看过的文章
StevenKSaint/Micro8
StevenKSaint/MITRE-ATT-CK-CN
StevenKSaint/muddyc3
Leaked Muddyc3 C2 source.
StevenKSaint/MyToolKit
【Not maintained】sqlmap对所有目标及其所有旁站批量自动化sqli
StevenKSaint/nse_vuln
Nmap扫描、漏洞利用脚本
StevenKSaint/PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
StevenKSaint/PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
StevenKSaint/R-A-M-D-D3-S-M-H
Python3实现RSA-AES-MD5-DES-DES3-MD5-SHA-HMAC已验证,附带说明
StevenKSaint/redis-rce
Redis 4.x/5.x RCE
StevenKSaint/RedTeamer
红方人员作战执行手册
StevenKSaint/vulnerability-paper
收集的文章 https://mrwq.github.io/vulnerability-paper/
StevenKSaint/webug4.0
webug4.0
StevenKSaint/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
StevenKSaint/WordLists-20111129
A lists of words based on common web directory and file names lists of words based on common web directory and file names. These wordlists are for Web security testing purpose.
StevenKSaint/yujianrdpcrack
御剑RDP爆破工具