Pinned Repositories
1
2016_sp_mobile
5.2.0.RC
5.2.0.RC源码
Active-Directory-Certificate-Services-abuse
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
AlliN
A flexible scanner
AndroidTools
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
PowerTools
PowerTools is a collection of PowerShell projects with a focus on offensive operations.
flypig5211's Repositories
flypig5211/Active-Directory-Certificate-Services-abuse
flypig5211/All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
flypig5211/AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
flypig5211/AttackWebFrameworkTools-5.0
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
flypig5211/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
flypig5211/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
flypig5211/CVE-2023-34039
VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039)
flypig5211/CVE-2023-38831-winrar-exploit
CVE-2023-38831 winrar exploit generator
flypig5211/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
flypig5211/edusrc_POC
在edusrc平台上对于一些通用漏洞检测时编写的简单python POC脚本
flypig5211/GoWxDump
SharpWxDump的Go语言版。微信客户端取证,获取信息(微信号、手机号、昵称),微信聊天记录分析(Top N聊天的人、统计聊天最频繁的好友排行、关键词列表搜索等)
flypig5211/Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
flypig5211/MonkeyDev
CaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.
flypig5211/nacos-poc
flypig5211/natpass
🔥居家办公,远程开发神器
flypig5211/netspy
netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)
flypig5211/Poc-Monitor
🔍 Github CVE POC 信息监控推送 🚀
flypig5211/qq-tim-elevation
CVE-2023-34312
flypig5211/QuantumulX_hs
for ios quantumul x, just test for myself.
flypig5211/reqable-app
Reqable issue track repo
flypig5211/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
flypig5211/SecDictionary
实战沉淀字典
flypig5211/SecretFinder
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
flypig5211/Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
flypig5211/termux-app
Termux - a terminal emulator application for Android OS extendible by variety of packages.
flypig5211/theHarvester
E-mails, subdomains and names Harvester - OSINT
flypig5211/vshell
vshell 是一款go编写的主机管理工具 vshell is a Remote Administation tool written in Go (RAT)
flypig5211/woodpecker-framework-release
高危漏洞精准检测与深度利用框架
flypig5211/wsMemShell
WebSocket 内存马/Webshell,一种新型内存马/WebShell技术
flypig5211/xiesen-parent