asdfkj1

Pinned Repositories

1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Language:C++0 0 00
2022-HW-POC
2022 护网行动 POC 整理
Language:Go0 0 00
360SafeBrowsergetpass
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本，用于节省红队人员工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
0 0 02
actuator-testbed
A vulnerable application exposing Spring Boot Actuators
Language:Java00
ActuatorExploit
SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
Language:Python0 0 01
AjaxFileUpload
Language:JavaScript0 0 00
alicloud-tools
阿里云ECS、策略组辅助小工具
Language:Go0 0 01
Ninja_UUID_Dropper
Module Stomping, No New Thread, HellsGate syscaller, UUID Dropper for x64 Windows 10!
Language:C1 0 00
SpringBoot-Labs
一个涵盖六个专栏：Spring Boot 2.X、Spring Cloud、Spring Cloud Alibaba、Dubbo、分布式消息队列、分布式事务的仓库。希望胖友小手一抖，右上角来个 Star，感恩 1024
Language:Java1 0 00
Vulnerability
此项目将不定期从棱角社区对外进行公布一些最新漏洞。
1 0 01

asdfkj1's Repositories

asdfkj1/1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Language:C++0 0 00
asdfkj1/2022-HW-POC
2022 护网行动 POC 整理
Language:Go0 0 00
asdfkj1/AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。
Language:Python0 0
asdfkj1/CVE-2022-26138
Atlassian Questions Hardcoded Password (CVE-2022-26138)
0 0
asdfkj1/CVE-2023-0386
CVE-2023-0386在ubuntu22.04上的提权
Language:C0 0
asdfkj1/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Language:C0 0
asdfkj1/evil_minio
EXP for CVE-2023-28434 MinIO unauthorized to RCE
asdfkj1/go_proxy_pool
无环境依赖开箱即用的代理IP池
Language:Go0 0
asdfkj1/GodPotato
Language:C#0 0
asdfkj1/JavaSec
a rep for documenting my study, may be from 0 to 0.1
Language:Java0 0
asdfkj1/laZzzy
laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
Language:C++0 0
asdfkj1/LockBit-Black-Builder
asdfkj1/mssqlwritefile
Language:C#
asdfkj1/my-re0-k8s-security
:atom: [WIP] 整理过去的分享，从零开始的Kubernetes攻防 🧐
Language:Shell0 0
asdfkj1/pe_to_shellcode
Converts PE into a shellcode
Language:C++0 0
asdfkj1/PEzor
Open-Source Shellcode & PE Packer
asdfkj1/Proxy-Attackchain
proxylogon & proxyshell & proxyoracle & proxytoken & all exchange server vulns summarization :)
Language:C#0 0
asdfkj1/ProxyNotShell-PoC
Language:Python0 0
asdfkj1/PySQLTools
Mssql利用工具
asdfkj1/PyWxDump
微信客户端取证，可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录))，解密脚本，获取数据库脚本；持获取多用户信息，目前支持所有新版本、正式版版本
Language:Python0 0
asdfkj1/schtask-bypass
免杀计划任务进行权限维持，过主流杀软。 A schtask tool bypass anti-virus
Language:C++0 0
asdfkj1/SecDictionary
实战沉淀字典
0 0
asdfkj1/SqlmapXPlus
SqlmapXPlus 基于 Sqlmap，对经典的数据库漏洞利用工具进行二开！
Language:Python0 0
asdfkj1/SysWhispers3WinHttp
SysWhispers3WinHttp 基于SysWhispers3项目增添WinHttp分离加载功能，可免杀绕过360核晶与Defender。
Language:C0 0
asdfkj1/VcenterKiller
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005以及log4j，提供一键上传webshell，命令执行或者上传公钥使用SSH免密连接
asdfkj1/Vulnerability-Wiki
一个综合漏洞知识库，集成了Vulhub、Peiqi、Edge、0sec、Wooyun等开源漏洞库
Language:HTML0 0
asdfkj1/VX-API
Collection of various malicious functionality to aid in malware development
Language:C++0 0
asdfkj1/Weaver_ofslogin_vul
组合利用泛微信息泄漏漏洞和任意用户登录漏洞，可获取全部loginId并测试登录
Language:Python0 0
asdfkj1/xray_crack
xray 1.8.5 full crack
0 0
asdfkj1/ysoserial-3
ysoserial for su18
Language:Java0 0