Pinned Repositories
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
b0q1
Learning!
b0q1.github.io
Learning!
Middleware-Vulnerability-detection
CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15
Neo-reGeorg
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
RelayX
NTLM relay test.
TinyInst
A lightweight dynamic instrumentation library
b0q1's Repositories
b0q1/RelayX
NTLM relay test.
b0q1/1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
b0q1/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
b0q1/ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
b0q1/codeql_compile
自动反编译闭源应用,创建codeql数据库
b0q1/eyes.sh
Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.
b0q1/Fastjson
Fastjson姿势技巧集合
b0q1/go-mimikatz
A wrapper around a pre-compiled version of the Mimikatz executable for the purpose of anti-virus evasion.
b0q1/gomasscan
gomasscan是一个纯go编写的masscan扫描库
b0q1/Gososerial
参考著名漏扫XRAY的代码,无需Java环境直接从二进制角度构造Ysoserial的Payload
b0q1/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
b0q1/HackJava
《深入理解Java代码审计》
b0q1/Hello-Java-Sec
☕️ Java Security,安全编码和代码审计
b0q1/jazzer
Coverage-guided, in-process fuzzing for the JVM
b0q1/jsForward
解决web及移动端H5数据加密Burp调试问题
b0q1/learning-codeql
CodeQL Java 全网最全的中文学习资料
b0q1/MemoryShell
JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring
b0q1/metarget
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
b0q1/n2n
Provide the binaries(edges and supernodes) of n2n that I collected
b0q1/openfire_shells
后台插件getshell
b0q1/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
b0q1/remote-method-guesser
Java RMI Vulnerability Scanner
b0q1/resty
Simple HTTP and REST client library for Go
b0q1/SharpKatz
Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
b0q1/SharpWSUS
b0q1/TomcatMemShell
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马,支持注入CMD内存马和冰蝎内存马
b0q1/WebclientServiceScanner
Python tool to Check running WebClient services on multiple targets based on @leechristensen
b0q1/wtf
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows.
b0q1/ysoserial
ysoserial for su18
b0q1/ysoserial-1
此项目为su18大佬的仓库镜像,如有问题可发issuse删库