Pinned Repositories
burpsuiefakeip
burp伪造ip爆破脚本
bypass360mimikatz_x64
CVE-2015-7501
(CVE-2015-7501)JBoss JMXInvokerServlet 反序列化漏洞
ecologyExp.jar
泛微oa数据库配置文件读取
Flash-player
flash钓鱼源码 中文+英文
MS14-068
域渗透工具
ShiroScan
shiro 1.2.47 反序列化
SleuthQL
SleuthQL是基于python3所开发的一款,用于批量爬行站点可能存在sql的地址。并且可以配合burp+sqlmap进行批量注入。 对比sqlmap手动单线程一个一个注入点的去识别,方便了很多。
teamview
win-exp-
windwos辅助提权脚本
ianxtianxt's Repositories
ianxtianxt/bypass360mimikatz_x64
ianxtianxt/teamview
ianxtianxt/SharpDecryptPwd
Windows常用程序密码读取工具:SharpDecryptPwd
ianxtianxt/discuz-ml-rce
影响系统及版本:Discuz!ML V3.2-3.4 Discuz!x V3.2-3.4
ianxtianxt/bypass_disablefunc_via_LD_PRELOAD
解决php提权的时候因系统禁用函数导致无法执行命令的情况
ianxtianxt/Joomla-3.4.6---configuration.php-Remote-Code-Execution
影响范围:3.0.0-3.4.6
ianxtianxt/Bulk-Scanning-of-Subdomain-Takeover-Vulnerabilities
子域名接管漏洞批量扫描
ianxtianxt/CVE-2018-13379
CVE-2018-13379
ianxtianxt/CVE-2018-13382
CVE-2018-13382
ianxtianxt/thinkphp5.0.1-automatic-getshell
thinkphp5.0.1自动getshell脚本
ianxtianxt/ADModule
Microsoft signed ActiveDirectory PowerShell module
ianxtianxt/CVE-2018-3191
CVE-2018-3191-PoC
ianxtianxt/CVE-2019-16097
ianxtianxt/CVE-2019-8451
ianxtianxt/vBulletin-5.x-0day-pre-auth-RCE-exploit
ianxtianxt/WOTD
Shmoocon 2019 Firetalk
ianxtianxt/actuator-testbed
A vulnerable application exposing Spring Boot Actuators
ianxtianxt/ColdFusionPwn
Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
ianxtianxt/ctf
ianxtianxt/CVE-2018-7600
Exploit for Drupal 7 <= 7.57 CVE-2018-7600
ianxtianxt/cve-2019-1003000-jenkins-rce-poc
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
ianxtianxt/cve-2019-14540-exploit
CVE-2019-14540 Exploit
ianxtianxt/jsp-webshell
ianxtianxt/oldays
public exploits
ianxtianxt/Pyspider-webui-poc
ianxtianxt/RecentFileCacheParser
Parses RecentFileCacheParser.bcf files
ianxtianxt/spring-jndi
Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
ianxtianxt/ssocks-0.0.14
ianxtianxt/yaml-payload
A tiny project for generating SnakeYAML deserialization payloads
ianxtianxt/ZimbraExploit
Zimbra邮件系统漏洞 XXE/RCE/SSRF/Upload GetShell Exploit 1. (CVE-2019-9621 Zimbra<8.8.11 XXE GetShell Exploit)