Pinned Repositories
.NETWebShell
.net 命令执行的webshell
AttackJNDI
绕过JEP290,无视JDK版本进行JNDI注入,但是需要Gadget
BurpShiroPassiveScan
一款基于BurpSuite的被动式shiro检测插件
CVE-2021-4035
PoC for PwnKit: Local Privilege Escalation Vulnerability Discovered in polkit’s pkexec (CVE-2021-4034)
CVE-2021-44077
Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077
hacktricks
JNDIExploit-1
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
ShiroExploit
ShiroExploit 是一款 Shiro 可视化利用工具,集成密钥爆破,命令回显内存马注入等功能
weblogic_exploit
weblogic漏洞利用工具
xray-crack
xray社区高级版证书生成,支持到 1.2.0 版本
bravery9's Repositories
bravery9/an0nud4y.github.io
Personal Security Blog
bravery9/ApricusFindEvil
检测查杀java内存马
bravery9/AtlasLdr
Reflective x64 loader implemented using dynamic indirect syscalls
bravery9/BounceBack
↕️🤫 Stealth redirector for your red team operation security
bravery9/CVE-2024-1086
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
bravery9/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
bravery9/evilrdp
bravery9/FilelessAgentMemShell
无需文件落地Agent内存马生成器
bravery9/Handly
Abuse leaked token handles.
bravery9/Hide-CobaltStrike
Hide your CobaltStrike PRO
bravery9/invictus
OSED Practice binary
bravery9/IoDllProxyLoad
DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
bravery9/IronSharpPack
IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then reflective load the C# project.
bravery9/JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
bravery9/KubeHound
Kubernetes Attack Graph
bravery9/NetExec
The Network Execution Tool
bravery9/Pentest-Collaboration-Framework
bravery9/PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
bravery9/PPPYSO
proof-of-concept for generating Java deserialization payload | Proxy MemShell 反序列化概念验证 | 动态代理实现内存马
bravery9/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual.
bravery9/RandomPOCs
Repo that holds random POCs
bravery9/RealBlindingEDR
Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...
bravery9/RTCore64_Vulnerability
Use RTCore64 to map your driver on windows 11.
bravery9/s4killer
bravery9/SharpRODC
To audit the security of read-only domain controllers
bravery9/suo5
一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool
bravery9/TianGongLab.github.io
破壳平台文档系统
bravery9/VectorKernel
PoCs for Kernel-mode rootkit techniques research.
bravery9/Vulhub-Reproduce
一个Vulhub漏洞复现知识库
bravery9/Windows-Penetration-Testing
Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that I find useful during internal penetration tests