Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
2022-HW-POC
2022 护网行动 POC 整理
Active-Directory-Pentest-Notes
个人域渗透学习笔记
Allscanner
数据库和其他服务的弱端口的弱口令检测以及未授权访问的集成检测工具。 Weak password blasting of weak ports and integrated detection tools for unauthorized access.
antSword
AntSword is a cross-platform website management toolkit.
AntSword-Loader
AntSword 加载器
ASWCrypter
An Bash&Python Script For Generating Payloads that Bypasses All Antivirus so far [FUD]
b374k
PHP Webshell with handy features
Behinder
“冰蝎”动态二进制加密网站管理客户端
BeRoot
Windows Privilege Escalation Tool
bailongwang1's Repositories
bailongwang1/2022-HW-POC
2022 护网行动 POC 整理
bailongwang1/bottleneckOsmosis
瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
bailongwang1/byp4xx
Simple bash script to bypass "403 Forbidden" messages with well-known methods discussed in #bugbountytips
bailongwang1/CDK
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with useful net-tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
bailongwang1/Cobalt-Strike-Aggressor-Scripts
Cobalt Strike Aggressor 插件包
bailongwang1/CobaltstrikeSource
Cobaltstrike4.1 Source
bailongwang1/CrossC2
generate CobaltStrike's cross-platform payload
bailongwang1/EHole
EHole(棱洞)-红队重点攻击系统指纹探测工具
bailongwang1/exp-hub
漏洞复现、批量脚本
bailongwang1/exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-5902、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
bailongwang1/Fuzz_dic
参数 | 字典 collections
bailongwang1/Goby
bailongwang1/HW
护网漏洞汇总
bailongwang1/JSINFO-SCAN
递归式寻找域名和api。
bailongwang1/JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
bailongwang1/Kernelhub
:palm_tree:Windows exploits提权漏洞合集,附带编译环境,演示GIF图,漏洞详细信息,可执行文件
bailongwang1/Ladon
大型内网渗透扫描器&Cobalt Strike,Ladon7.2内置94个模块,包含信息收集/存活主机/IP扫描/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、SMBGhost、Weblogic、ActiveMQ、Tomcat、Struts2系列,密码口令爆破(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB、Netbios、LDAP、SmbHash、WmiHash、Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
bailongwang1/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
bailongwang1/OLa
bailongwang1/red_team_tool_countermeasures
bailongwang1/SatanSword
红队综合渗透框架
bailongwang1/shellcodeloader
shellcodeloader
bailongwang1/shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
bailongwang1/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist
bailongwang1/taowu-cobalt-strike
bailongwang1/tesseract
Tesseract Open Source OCR Engine (main repository)
bailongwang1/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...字典运用于实战案例:https://gh0st.cn/archives/2019-11-11/1
bailongwang1/WechatBot
bailongwang1/Windows-exploits
🎯 Windows 平台提权漏洞大合集(收集)
bailongwang1/wsMemShell
WebSocket 内存马,一种新型内存马技术