Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
0day-security-software-vulnerability-analysis-technology
0day安全_软件漏洞分析技术
100-Days-Of-ML-Code
100 Days of ML Coding
30-seconds-of-code
A curated collection of useful JavaScript snippets that you can understand in 30 seconds or less.
advanced-java
😮 互联网 Java 工程师进阶知识完全扫盲:涵盖高并发、分布式、高可用、微服务等领域知识,后端同学必看,前端同学也可学习
algorithm
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
capa
The FLARE team's open-source tool to identify capabilities in executable files.
Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
PoC-in-GitHub
📡 PoC auto collect from GitHub.
YuRenHan's Repositories
YuRenHan/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
YuRenHan/capa
The FLARE team's open-source tool to identify capabilities in executable files.
YuRenHan/PoC-in-GitHub
📡 PoC auto collect from GitHub.
YuRenHan/0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
YuRenHan/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
YuRenHan/AttackWebFrameworkTools-5.0
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
YuRenHan/aurora
YuRenHan/bootlicker
A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
YuRenHan/codeql-uboot
YuRenHan/cpp_new_features
2021年最新整理, C++ 学习资料,含C++ 11 / 14 / 17 / 20 / 23 新特性、入门教程、推荐书籍、优质文章、学习笔记、教学视频等
YuRenHan/CTFium
Collection of CTF pwn challenges.
YuRenHan/diagrams
YuRenHan/flare-ida
IDA Pro utilities from FLARE team
YuRenHan/flare-vm
YuRenHan/GitHubDaily
创刊于 2015 年,坚持分享 GitHub 上高质量、有趣实用的开源技术教程、开发者工具、编程网站、技术资讯。
YuRenHan/gold-miner
🥇掘金翻译计划,可能是世界最大最好的英译中技术社区,最懂读者和译者的翻译平台:
YuRenHan/HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
YuRenHan/hello-github-actions
YuRenHan/ida
YuRenHan/JavaSecInterview
打造最强的Java安全研究与安全开发面试题库,包含问题和详细的答案,帮助师傅们找到满意的工作
YuRenHan/JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
YuRenHan/jvm
🤗 JVM 底层原理最全知识总结
YuRenHan/nginx
An official read-only mirror of http://hg.nginx.org/nginx/ which is updated hourly. Pull requests on GitHub cannot be accepted and will be automatically closed. The proper way to submit changes to nginx is via the nginx development mailing list, see http://nginx.org/en/docs/contributing_changes.html
YuRenHan/paper_collection
Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read
YuRenHan/radare2
UNIX-like reverse engineering framework and command-line toolset
YuRenHan/rCore-Tutorial-Book-v3
A book about how to write OS kernels in Rust easily.
YuRenHan/redtool
日常积累的一些红队工具及自己写的脚本,更偏向于一些diy的好用的工具,并不是一些比较常用的msf/awvs/xray这种
YuRenHan/seeyou_exp
致远OA漏洞综合利用脚本
YuRenHan/Source-and-Fuzzing
一些阅读源码和Fuzzing 的经验,涵盖黑盒与白盒测试..
YuRenHan/TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.