Pinned Repositories
acefile
POC of https://research.checkpoint.com/extracting-code-execution-from-winrar/
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
bin-waf
CTF线下赛pwn题目流量记录工具
exserial
Java Untrusted Deserialization Exploits Tools
F-MiddlewareScan
A vulnerability detection scripts for middleware services
geacon_pro
重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
GoodbyeEDR
jexboss
JexBoss: Jboss verify and EXploitation Tool
SharpCall
Simple PoC demonstrating syscall execution in C#
getcode2git's Repositories
getcode2git/geacon_pro
重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.
getcode2git/AceLdr
Cobalt Strike UDRL for memory scanner evasion.
getcode2git/Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
getcode2git/AvoidRandomKill
一次免杀实践(bypass 360、huorong、windows defender、kaspersky、)
getcode2git/CallBackDump
能过卡巴、核晶、defender等杀软的dump lsass进程工具
getcode2git/cf
云环境利用框架 Cloud Exploitation Framework 方便红队人员在获得 AK 的后续工作
getcode2git/cookiecutter-frida
Cookiecutter template for hooking traffic encrytion by frida
getcode2git/cskefu
🌲 春松客服,开源,免费,智能客服系统,机器人客服
getcode2git/CVE-2023-33246_RocketMQ_RCE_EXPLOIT
CVE-2023-33246 RocketMQ RCE Detect By Version and Exploit
getcode2git/CVE-2024-4577-PHP-RCE
全球首款利用PHP默认环境的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP,共享原创EXP,支持SSRF,支持绕过WAF。The world's first CVE-2024-4577 PHP-CGI RCE exploit utilizing the default PHP environment. Sharing original exploit, supports SSRF, supports WAF bypass.
getcode2git/d-eyes
D-Eyes为绿盟科技一款检测与响应工具
getcode2git/debugfs
魔改debugfs,应急溯源版本
getcode2git/electron_shell
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
getcode2git/FlavorTown
Various ways to execute shellcode
getcode2git/Goby
getcode2git/HideProcessHook
DLL that hooks the NtQuerySystemInformation API and hides a process name
getcode2git/j2osWin
getcode2git/JNDI-Injection-Exploit-Plus
50+ Gadgets(20 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
getcode2git/JuicyPotatoNG
Another Windows Local Privilege Escalation from Service Account to System
getcode2git/Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
getcode2git/No_X_Memory_ShellCodeLoader
无可执行权限加载 ShellCode (点点 Star,非常感谢!)
getcode2git/POC1
2023HW漏洞整理,收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了100多个poc/exp
getcode2git/QAX_VPN_Crack
奇安信VPN任意用户密码重置
getcode2git/ReBeacon_Src
getcode2git/rproxy
自动化的代理服务器
getcode2git/ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
getcode2git/sshd_backdoor
getcode2git/WatchAD2.0
WatchAD2.0是一款针对域威胁的日志分析与监控系统
getcode2git/YongyouNC-Unserialize-Tools
用友NC反序列化漏洞payload生成
getcode2git/ysoserial-1
ysoserial for 1nhann