Pinned Repositories
Cheatsheets
Penetration Testing/Security Cheatsheets
ctfs
store my ctf codes
CVE-2020-14882_ALL
CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
hackUtils
It is a hack tool kit for pentest and web security research.
java_unserialize
java unserialize vulnerability payload
jvm-rasp
基于JVM-Sandbox实现RASP安全监控防护
jvm-systemblock
Based on jvm-sandbox, block system exec cmd~
python
my python script
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
ysoserial-test
ysoserial tool,some analyse and test
angelwhu's Repositories
angelwhu/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
angelwhu/jvm-rasp
基于JVM-Sandbox实现RASP安全监控防护
angelwhu/CVE-2020-14882_ALL
CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
angelwhu/1book
《Web安全之机器学习入门》
angelwhu/2021_Hvv
2021 hw
angelwhu/antSword
AntSword is a cross-platform website management toolkit.
angelwhu/blind_watermark
Blind&Invisible Watermark ,图片盲水印,提取水印无须原图!
angelwhu/blog-comment
博客评论
angelwhu/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
angelwhu/ClassHound
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
angelwhu/crawlergo
A powerful browser crawler for web vulnerability scanners
angelwhu/crawlergo_x_XRAY
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
angelwhu/CVE-2019-0708
Scanner PoC for CVE-2019-0708 RDP RCE vuln
angelwhu/CVE-2020-0796
CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
angelwhu/dubbo-exp
Dubbo反序列化一键快速攻击测试工具,支持dubbo协议和http协议,支持hessian反序列化和java原生反序列化。
angelwhu/FastjsonExploit
Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)
angelwhu/Ghostcat-CNVD-2020-10487
Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)
angelwhu/iview-admin
Vue 2.0 admin management system template based on iView
angelwhu/JNDI
JNDI 注入利用工具
angelwhu/KataGo
GTP engine and self-play learning in Go
angelwhu/marshalsec
angelwhu/python-paddingoracle
A portable, padding oracle exploit API
angelwhu/reapoc
OpenSource Poc && Vulnerable-Target Storage Box.
angelwhu/SaiDict
弱口令,敏感目录,敏感文件等渗透测试常用攻击字典
angelwhu/Struts2-Scan
Struts2全漏洞扫描利用工具
angelwhu/w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
angelwhu/w5_web
W5 SOAR 开源前端
angelwhu/WeblogicScan
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持
angelwhu/webogram
Telegram web application, GPL v3
angelwhu/wxappUnpacker
Wechat App(微信小程序,.wxapkg)解包及相关文件(.wxss,.json,.wxs,.wxml)还原工具