Pinned Repositories
2022-HW-POC
2022 护网行动 POC 整理
A-Programmers-Guide-to-English
专为程序员编写的英语学习指南 v1.2。在线版本请点 ->
ADFSRelay
Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
ADSearch
A tool to help query AD via the LDAP protocol
All-Defense-Tool
本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
AScan
对"https://github.com/wgpsec/ENScan_GO"的修改,只保留了爱企查接口,支持对外投资企业和子公司递归
laravel-exploits
Exploit for CVE-2021-3129
Shiro_test
about shiro
Web_Security_Academy-zh
关于PortSwigger Web Security Academy的翻译文章
b1ngda0's Repositories
b1ngda0/SMBGhost_AutomateExploitation
SMBGhost (CVE-2020-0796) Automate Exploitation and Detection
b1ngda0/OffenPowerSh
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
b1ngda0/OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
b1ngda0/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
b1ngda0/SharpRDP
Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
b1ngda0/ProxyPool
一款用于自动切换ip的代理池服务,无需任何依赖,能快速运行。
b1ngda0/c2nim
c2nim is a tool to translate Ansi C code to Nim. The output is human-readable Nim code that is meant to be tweaked by hand before and after the translation process.
b1ngda0/A-Programmers-Guide-to-English
专为程序员编写的英语学习指南 v1.2。在线版本请点 ->
b1ngda0/WebLogic-Shiro-shell
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell
b1ngda0/ProcessInjection
This program is designed to demonstrate various process injection techniques
b1ngda0/nps
一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发,可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面,内网dns解析、内网socks5代理等等……,并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
b1ngda0/taowu-cobalt-strike
b1ngda0/NmapTools
Go语言练习,第一个小工具,nmaptools解析xml导出xlsx结果、进行web服务探测、进行socket数据探测等
b1ngda0/fancyss_history_package
科学上网插件的离线安装包储存在这里
b1ngda0/SatanSword
红队综合渗透框架
b1ngda0/HackTool
黑客工具集
b1ngda0/ADSearch
A tool to help query AD via the LDAP protocol
b1ngda0/JoomlaScan
A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.
b1ngda0/Pentest_Interview
个人准备渗透测试和安全面试的经验之谈,和去部分厂商的面试题,干货真的满满~
b1ngda0/JSFinder
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
b1ngda0/javasec_study
java代码审计学习笔记
b1ngda0/picBed
b1ngda0/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
b1ngda0/nim-socks5
Nim Socks5 library
b1ngda0/SharPersist
b1ngda0/Vxscan
python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
b1ngda0/OSCE-Prep
A list of freely available resources that can be used as a prerequisite before taking OSCE.
b1ngda0/informer
A Telegram Mass Surveillance Bot in Python
b1ngda0/Shiro_test
about shiro
b1ngda0/golang-design-pattern
设计模式 Golang实现-《研磨设计模式》读书笔记