Pinned Repositories
-
搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享
2017-11882_Generator
office漏洞CVE-2017-11882 File Generator PoC
3gstudent.github.io
blog
EQGRP
Decrypted content of eqgrp-auction-file.tar.xz
EQGRP_Lost_in_Translation
方程式组织工具Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg
Invoke-PowerShellIcmp.ps1
ICMP shell反弹powershell脚本,结合icmpsh使用
lcx
lcx端口转发工具
phpggc
PHP反序列化載荷生成工具 PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
RAT-cpp-prototype
A simple RAT.
sqlmap-tamper
sqlmap绕过waf等脚本
flywithoutwings's Repositories
flywithoutwings/AJPy
flywithoutwings/ApplicationInspector
一款功能强大的软件源代码分析与审计工具A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'what's in it' using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
flywithoutwings/APT_Digital_Weapon
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
flywithoutwings/aria2
aria2 is a lightweight multi-protocol & multi-source, cross platform download utility operated in command-line. It supports HTTP/HTTPS, FTP, SFTP, BitTorrent and Metalink.
flywithoutwings/ATTCK-PenTester-Book
渗透测试技术手册 ATTCK-PenTester-Book
flywithoutwings/BypassAntiVirus
远控免杀系列文章及配套工具,搜集汇总了互联网上的几十种免杀工具和免杀方法,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
flywithoutwings/CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
flywithoutwings/CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner
CNVD-2020-10487/CVE-2020-1938,批量扫描工具
flywithoutwings/CNVD-2020-10487-Tomcat-ajp-POC
CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc
flywithoutwings/CVE-2019-19781
Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
flywithoutwings/CVE-2020-1938
CVE-2020-1938
flywithoutwings/CVE-2020-1938-Tomact-file_include-file_read
Tomcat的文件包含及文件读取漏洞利用POC
flywithoutwings/CVE-2020-2551
weblogic远程命令执行漏洞 CVE-2020-2551 poc exploit python example, more see https://www.anquanke.com/post/id/197605
flywithoutwings/electron-ssr
Shadowsocksr client using electron
flywithoutwings/iocs
很多web框架poc Indicators from Unit 42 Public Reports
flywithoutwings/K8CScan
K8Cscan大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用,程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本,支持Cobalt Strike联动
flywithoutwings/LOLBITS
LOLBITS:一款基于后台智能传输服务(BITS)的C#反向Shell C# reverse shell using Background Intelligent Transfer Service (BITS) as communication protocol.
flywithoutwings/massdns
MassDNS:一款功能强大的高性能DNS子域名查询枚举侦察工具A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
flywithoutwings/nps
一款轻量级、功能强大的内网穿透代理服务器。支持tcp、udp流量转发,支持内网http代理、内网socks5代理,同时支持snappy压缩、站点保护、加密传输、多路复用、header修改等。支持web图形化管理,集成多用户模式。
flywithoutwings/odat
ODAT: Oracle Database Attacking Tool
flywithoutwings/openmtp
MAc上管理安卓工具 OpenMTP - Advanced Android File Transfer Application for macOS
flywithoutwings/PasswordDic
2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典
flywithoutwings/PoC-in-GitHub
PoC auto collect from GitHub.
flywithoutwings/psiphon-windows
Psiphon for Windows client
flywithoutwings/shadowsocksr-v2ray-android
A ShadowsocksR and V2Ray client for Android
flywithoutwings/SharpCookieMonster
chrome cookie提取工具 Extracts cookies from Chrome.
flywithoutwings/SharpLocker
Windows凭证的伪造和窃取工具,可以伪造Windows的用户登录界面
flywithoutwings/socialscan
Socialscan:一款准确且快速的在线邮件地址及用户名查询工具 Check email address and username availability on online platforms with 100% accuracy
flywithoutwings/Web-Security-Attack
Web安全相关内容
flywithoutwings/WindowsFirewallRuleset
WindowsFirewallRuleset:一套针对Windows防火墙规则集的PowerShell脚本系统安全 WindowsFirewallRuleset:一套针对Windows防火墙规则集的PowerShell脚本 Windows firewall ruleset powershell scripts