Pinned Repositories
scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
TOP
TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things
51Pwn-Platform
51Pwn Platform,为黑客而生的大数据搜索引擎,Big data search engine born for hackers
bug-bounty
bounty collection
CVE-2020-2551
how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP
CVE_2020_2546
CVE-2020-2546,CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc python3,
golang-RCE-0day-POC
golang RCE 0day POC
hackerToolsApp
hacker Tools cross-platform desktop App, support windows/MacOS/LInux ....
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
spring-spel-0day-poc
spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963
hktalent's Repositories
hktalent/ALF
Fuzz testing framework for security research
hktalent/fasttrack-python
Class files for Fast Track to Python
hktalent/hashes
Cross-plataform tool that injects keys with the same hash code in order to test web applications against hash collision attacks.
hktalent/hiccup
Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to be extended and customized, through the interface provided by Burp Extender (http://portswigger.net/burp/extender/). Its aim is to allow for the development and integration of custom testing functionality into the Burp tool using Python request/response handler plugins.
hktalent/ios-keychain-analyzer
iOS Keychain Analyzer
hktalent/ip_spoofing
hktalent/JavaPayload
JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfigurations (like not password protected Tomcat manager or debugger port).
hktalent/jmx-staticport-agent
JVM javaagent which allows to expose JMX service over a specific network interface and port
hktalent/keychaindump
A proof-of-concept tool for reading OS X keychain passwords
hktalent/nginx-monitor
Monitoring Nginx server statistics with rrdtool
hktalent/node-dht
DHT implementation (http://bittorrent.org/beps/bep_0005.html)
hktalent/nodejs-dht-bencode
bencoding with Buffers instead of strings
hktalent/Posh-Metasploit
PowerShell module to automate via XMLRPC a remote Metasploit server.
hktalent/RestletXMLDecoder
Restlet API consuming XML serialized Java Objects. Vulnerable to XXE and RCE (if third party libraries like GroovyShell are found in the classpath)
hktalent/s7-metasploit-modules
Siemens Simatic S7 Metasploit Modules
hktalent/T3Protocol
This package can read and write Weblogic T3 protol based RMI stream.
hktalent/tfidf
Term frequency–inverse document frequency (tfidf) for Node.js
hktalent/zeroday
ie9-11 zero-day