ir1SKry's Stars
admintony/shiro_rememberMe_Rce
利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
LandGrey/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
CHYbeta/Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
CHYbeta/Web-Security-Learning
Web-Security-Learning
SecWiki/CMS-Hunter
CMS漏洞测试用例集合
dirtycow/dirtycow.github.io
Dirty COW
chenjj/espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
Dliv3/Venom
Venom - A Multi-hop Proxy for Penetration Testers
zhzyker/exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
worawit/MS17-010
MS17-010
EddieIvan01/iox
Tool for port forwarding & intranet proxy
tennc/webshell
This is a webshell open source project
jas502n/MYSQL_SQL_BYPASS_WIKI
mysql注入,bypass的一些心得
feihong-cs/ShiroExploit-Deprecated
Shiro550/Shiro721 一键化利用工具,支持多种回显方式
SkyBlueEternal/thinkphp-RCE-POC-Collection
thinkphp v5.x 远程代码执行漏洞-POC集合
momosecurity/rhizobia_J
JAVA安全SDK及编码规范
threedr3am/learnjavabug
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
wbond/shadow_password_crypt
A python script that generates sha512 password hashes suitable for use with useradd(8)
gianlucaborello/libprocesshider
Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
g0dA/linuxStack
Linux技术栈
bloodzer0/ossa
Open-Source Security Architecture | 开源安全架构
insightglacier/Shiro_exploit
Apache Shiro 反序列化漏洞检测与利用工具
dozernz/cve-2020-11651
javascript-obfuscator/javascript-obfuscator
A powerful obfuscator for JavaScript and Node.js
lufeirider/CVE-2019-2725
CVE-2019-2725 命令回显
LoRexxar/redis-rogue-server
Redis 4.x & 5.x RCE
grayddq/GScan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
projectzeroindia/CVE-2019-19781
Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
find-sec-bugs/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
jondonas/linux-exploit-suggester-2
Next-Generation Linux Kernel Exploit Suggester