Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
887Rat
887+1 Rat, fully cracked with all 3 working builders
Agnee
Find sensitive information using dorks from different search-engines.
awvs14-scan
针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
cvelist
Pilot program for CVE submission through GitHub
fresh-resolvers
List of fresh DNS resolvers updated daily
WordList
Wordlist-Weaver
The project aims at creating target-specific wordlists for any web application that you are testing.
wordpress-malware
Collection of malware files found on WordPress sites
abramas's Repositories
abramas/awvs14-scan
针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
abramas/Agnee
Find sensitive information using dorks from different search-engines.
abramas/ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
abramas/arno
An automation tool to install the most popular tools for bug bounty or pentesting.
abramas/Autopwns
Scripts para automatizar explotación de máquinas de la plataforma de HackTheBox, shell como root al instante
abramas/censys-subdomain-finder
⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
abramas/codewarrior
code-searching tool and static code analysis - Beta
abramas/CTF-3
abramas/CTF-4
abramas/CVE-2022-0543
Redis RCE through Lua Sandbox Escape vulnerability
abramas/CVE-2022-24637
Unauthenticated RCE in Open Web Analytics (OWA) 1.7.3
abramas/CVE-2022-36804-PoC
Proof of Concept exploit for CVE-2022-36804 affecting BitBucket versions <8.3.1
abramas/FUD-UUID-Shellcode
abramas/hoaxshell
An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.
abramas/Home-Grown-Red-Team
abramas/Logsensor
A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning
abramas/mgwls
Combine words from two wordlist files and concatenate them with an optional delimiter
abramas/nginxpwner
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
abramas/OSCP_Tools
Tools for passing OSCP
abramas/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
abramas/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
abramas/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines.
abramas/RobinHood
RobinHood - Bug Hunting Recon Automation Script
abramas/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
abramas/SQLiDetector
Simple python script that helps you to detect SQL injection "Error based" by sending multiple requests with different payloads and check for 152 regex pattern for different databases.
abramas/sqlmapsh
SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration
abramas/TOP
TOP All bugbounty pentesting CVE-2022- POC Exp RCE example payload Things
abramas/wordlists
Real-world infosec wordlists, updated regularly
abramas/write-up
:smirk_cat: CTF write-ups
abramas/Z0FCourse_ReverseEngineering
Reverse engineering focusing on x64 Windows.