admintony

Pinned Repositories

BypassCaiDao
过WAF菜刀
66 3 125
Digger
从百度爬取子域名
Language:Python14 2 06
ePortalGetPass
校园网漏洞用户枚举工具
Language:Python37 3 212
Prepare-for-AWD
AWD攻防赛脚本集合
Language:Python948 13 3221
shiro_rememberMe_Rce
利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
Language:Python123 2 116
SQL-injection
解决sqlmap不能跑的注入
Language:Python37 3 028
svnExploit
SvnExploit支持SVN源代码泄露全版本Dump源码
Language:Python956 9 3173
thinkPHPBatchPoc
thinkPHP代码执行批量检测工具
Language:Python75 1 121
TongdaRCE
通达OA<v11.5&v11.6版本RCE Exploit
Language:Python26 2 014
Windows-Exploit
Windows本地溢出EXP收集
Language:C++44 2 133

admintony's Repositories

admintony/svnExploit
SvnExploit支持SVN源代码泄露全版本Dump源码
Language:Python956 9 3173
admintony/shiro_rememberMe_Rce
利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
Language:Python123 2 116
admintony/thinkPHPBatchPoc
thinkPHP代码执行批量检测工具
Language:Python75 1 121
admintony/TongdaRCE
通达OA<v11.5&v11.6版本RCE Exploit
Language:Python26 2 014
admintony/Digger
从百度爬取子域名
Language:Python14 2 06
admintony/admintony.github.io
Language:HTML5 4 11
admintony/dirTraversalExploit
Language:Go5 1 01
admintony/redTeamTools
红队工具
Language:PowerShell2 2 02
admintony/2021_Hvv
2021 hw
1 02
admintony/avList
avList - 杀软进程对应杀软名称
Language:JavaScript1 01
admintony/bypass_AV
Language:Go1 01
admintony/CobaltStrikeDos
CVE-2021-36798 Exp: Cobalt Strike < 4.4 Dos
Language:Python1 0
admintony/CVE-2019-11043
php-fpm+Nginx RCE
Language:Python1 0
admintony/CVE-2020-14882
CVE-2020–14882、CVE-2020–14883
1 01
admintony/CVE-2021-22205
Pocsuite3 For CVE-2021-22205
Language:Python1 0
admintony/cynews
Language:Python1 0
admintony/Gitlab-CVE-2021-22205
Language:Python1 01
admintony/idebug
用于通过企业微信的 corpid 和 corpsecret 自动获取access_token以调试接口
0 0
admintony/MS17010EXP
Ladon Moudle MS17010 Exploit for PowerShell
Language:PowerShell1 01
admintony/MSSQL-Fileless-Rootkit-WarSQLKit
Bildiğiniz üzere uzun zamandır MSSQL üzerine çalışmalar yapmaktayım. Bu yazımda uzun zamandır uğraştığım bir konuyu ele alacağım, MSSQL Rootkit. Bildiğiniz üzere şimdiye kadar MS-SQL için anlatılan post-exploitation işlemlerinin büyük çoğunluğu “xp_cmdshell” ve “sp_OACreate” stored procedure’lerini kullanarak anlatılır. Peki xp_cmdshell ve sp_OACreate stored procedure’lerinin olmadığı bir MSSQL sunucusunun “sa” hesabını ele geçirmişsek, o sisteme girmekten vaz mı geçeceğiz? Tabii ki vazgeçmememiz gerekiyor. Bu makale “sa” hesabının yakalandığı ve “xp_cmdshell”, “sp_OACreate”, “sp_OAMethod” vb. prosedürlerin hiç birinin çalışmadığı bir senaryo düşünülerek kaleme alınmıştır.
Language:C#1 0
admintony/MyJSPWebshell
My collection of various of JSP Webshell.
Language:Java1 0
admintony/onebot
OneBot 标准：一个聊天机器人应用接口标准
1 01
admintony/pivotnacci
A tool to make socks connections through HTTP agents
Language:Python0 0
admintony/ripple20-poc
Treck Network Stack Discovery Tool by JSOF
Language:Python1 0
admintony/ShiroExploit
Shiro550/Shiro721 一键化利用工具，支持简单回显
Language:Java1 0
admintony/Sunflower_get_Password
一款针对向日葵的识别码和验证码提取工具
Language:Python1 0
admintony/test-ctf-xml
111
2 0
admintony/unidbg-mt-server23
mtgsig 2.3
Language:Java0 0
admintony/vscan
开源、轻量、快速、跨平台的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
1
admintony/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Language:Shell1 01