kkwwqqa's Stars
b0bac/GetMail
利用NTLM Hash读取Exchange邮件
yunxu1/dnsub
dnsub一款好用且强大的子域名扫描工具
Pai-Po/CVE-2021-1732
CVE-2021-1732 poc & exp; tested on 20H2
itm4n/PPLdump
Dump the memory of a PPL with a userland exploit
NYAN-x-CAT/Bypass-Windows-Defender-VBS
Disable WD using VBS
jayus0821/swagger-hack
自动化爬取并自动测试所有swagger接口
bit4woo/Summit_PPT
各种安全大会PPT PDF
lanyi1998/DNSlog-GO
DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具,自带WEB界面 / DNSLog-GO is a monitoring tool written in Golang that monitors DNS resolution records. It comes with a web interface.
TheKingOfDuck/myScripts
一个垃圾桶
TheKingOfDuck/XSS-Fishing2-CS
鱼儿在cs上线后自动收杆|Automatically stop fishing in javascript after the fish is hooked
TheKingOfDuck/MatryoshkaDollTool
MatryoshkaDollTool-程序加壳/捆绑工具
TheKingOfDuck/domain_screen
站点批量截图
TheKingOfDuck/BypassAVAddUsers
绕过杀毒软件添加用户
TheKingOfDuck/TheKingOfDuck
TheKingOfDuck
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
lengjibo/RedTeamTools
记录自己编写、修改的部分工具
ChoiSG/UuidShellcodeExec
PoC for UUID shellcode execution using DInvoke
Suki1i1i/Bypass_Av
记录自己研究的AV免杀操作方法等
0xss/BestShell
世界上最好用的php大马
metaStor/Bypass_Go
参考CS的Bypass插件+分离免杀**改造
wgpsec/CS-Avoid-killing
CS免杀加载器
Y4er/fastjson-bypass-autotype-1.2.68
fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
Ershu1/2021_Hvv
2021 hw
Ascotbe/virus
病毒&免杀脚本&乱七八糟的脚本
foofus-sph1nx/PyMailSniper
Python port of MailSniper to exfiltrate emails via EWS endpoint
inbug-team/InScan
边界打点后的自动化渗透工具
jas502n/oracleShell
oracle 数据库命令执行
kelvinBen/AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
LFYSec/ActuatorExploit
SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE
exp1orer/FastAdmin_Upload
FastAdmin 前台文件上传RCE