Pinned Repositories
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
ADSec-and-RedTeam
record some AD security and Red Team contents
Audit-Learning
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
Awesome-POC
一个各类漏洞POC知识库
BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
command
红队常用命令速查
CrackMapExec
A swiss army knife for pentesting networks
CVE-2021-21985
CVE-2021-21985 VMware vCenter Server远程代码执行漏洞 EXP (更新可回显EXP)
GolangBypassAV
研究利用golang各种姿势bypassAV
HackJava
《深入理解Java代码审计》
in-a-word's Repositories
in-a-word/1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
in-a-word/ADSec-and-RedTeam
record some AD security and Red Team contents
in-a-word/Audit-Learning
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
in-a-word/Awesome-POC
一个各类漏洞POC知识库
in-a-word/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
in-a-word/command
红队常用命令速查
in-a-word/CVE-2021-21985
CVE-2021-21985 VMware vCenter Server远程代码执行漏洞 EXP (更新可回显EXP)
in-a-word/GolangBypassAV
研究利用golang各种姿势bypassAV
in-a-word/HackJava
《深入理解Java代码审计》
in-a-word/how-does-SecureCRT-encrypt-password
Transferred from https://github.com/DoubleLabyrinth/how-does-SecureCRT-encrypt-password
in-a-word/JavaCodeAudit
Getting started with java code auditing 代码审计入门的小项目
in-a-word/JavaID
java source code static code analysis and danger function identify prog
in-a-word/KCon
KCon is a famous Hacker Con powered by Knownsec Team.
in-a-word/my-re0-k8s-security
:atom: [WIP] 整理过去的分享,从零开始的Kubernetes攻防 🧐
in-a-word/PHP-Audit-Labs
一个关于PHP的代码审计项目
in-a-word/RelayX
NTLM relay test.
in-a-word/sgn
Shikata ga nai (仕方がない) encoder ported into go with several improvements
in-a-word/theHarvester
E-mails, subdomains and names Harvester - OSINT