Pinned Repositories
Facebook-Bug-Bounty-Write-ups
Hunting Bugs for Fun and Profit
FinalRecon
OSINT Tool for All-In-One Web Reconnaissance
Hardware-and-Firmware-Security-Guidance
Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber
Java-Application-Exploits
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool WebLogic, WebSphere, JBoss, Jenkins, OpenNMS Vulnerability
king-phisher
Phishing Campaign Toolkit
LeakLooker
Find open databases with Shodan
LuWu
红队基础设施自动化部署工具
mass-pwn-vbulletin
Identify vulnerable (RCE) vBulletin 5.0.0 - 5.5.4 instances using Shodan
pentest
test-your-sysadmin-skills
A collection of *nix Sysadmin Test Questions and Answers. Test your knowledge and skills in different fields with these Q/A.
c002's Repositories
c002/Active-Directory-Exploitation-Cheat-Sheet-1
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
c002/AllAboutBugBounty
All about bug websites (bypasses, payloads, and etc)
c002/balm-cli
:spades: BalmJS scaffolding tool for modern webapps
c002/bash_scripting
bash scripting thing !
c002/Bug-Bounty-Toolz
BBT - Bug Bounty Tools
c002/Chimera
Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
c002/client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
c002/CVE-2020-0796-RCE-POC
CVE-2020-0796 Remote Code Execution POC
c002/cve-2020-1337-poc
poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
c002/CVE-2020-3452
c002/CVE-2020-8193
Citrix ADC Vulns
c002/CVE-2020-8193-Citrix-Scanner
Scanning for CVE-2020-8193 - Auth Bypass check
c002/dazzleUP
A tool that detects the privilege escalation vulnerabilities caused by misconfigurations and missing updates in the Windows operating systems.
c002/FuzzGen
c002/fuzzotron
A TCP/UDP based network daemon fuzzer
c002/JSFinder
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
c002/laravel-exploits
Exploit for CVE-2021-3129
c002/learn365
This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
c002/MiscTools
Miscellaneous Tools
c002/mjet
MOGWAI LABS JMX exploitation toolkit
c002/real_ip_discover
c002/SAP_RECON
PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
c002/SecurityTips
c002/SharpSMBSpray
Spray a hash via smb to check for local administrator access
c002/slicer
A tool to automate the boring process of APK recon
c002/VisualDoor
SonicWall SSL-VPN Exploit
c002/VulWiki
VulWiki
c002/WinPrivEsc
Repository for notes & working tactics involved in Windows Privilege Escalation
c002/WSuspicious
WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
c002/Xeexe-TopAntivirusEvasion
Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable