l1angfeng

l1angfeng's Stars

• lijiejie/ds_store_exp

  A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.

  Language:Python1.6k291

• yakumioto/YaHei-Consolas-Hybrid-1.12

  YaHei Consolas Hybrid 字体

  Language:Shell1.4k272

• stormstone/SpiderSSS

  🪲 一些爬虫的学习笔记资料。必应图片下载爬虫、豆瓣读书爬虫、 当当图书爬虫、网易云用户信息爬虫、GitHub用户信息爬虫、 Twitter用户图片下载等等。

  Language:Jupyter Notebook8220

• yzctzl/NC

  Language:C++586148

• 1n7erface/Template

  Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描

  1.1k122

• smxiazi/xp_CAPTCHA

  xp_CAPTCHA_api burp 验证码识别插件 调用接口 准确率更高

  Language:Java25039

• horizon3ai/vcenter_saml_login

  A tool to extract the IdP cert from vCenter backups and log in as Administrator

  Language:Python50093

• PatrickAlphaC/nft-mix

  Language:Solidity823412

• Octoberfest7/XLL_Phishing

  XLL Phishing Tradecraft

  Language:C41379

• lz520520/railgun

  2.2k252

• klezVirus/chameleon

  PowerShell Script Obfuscator

  Language:Python52694

• klezVirus/CVE-2021-40444

  CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit

  Language:HTML806170

• outflanknl/C2-Tool-Collection

  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

  Language:C1.2k201

• CravateRouge/bloodyAD

  BloodyAD is an Active Directory Privilege Escalation Framework

  Language:Python1.6k141

• JDArmy/DCSec

  域控安全one for all

  731109

• olafhartong/Presentations

  My conference presentations

  6610

• LOLBAS-Project/LOLBAS

  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

  Language:XSLT7.4k1k

• makdosx/mip22

  :computer: :iphone: mip22 is a advanced phishing tool

  Language:Shell616126

• xairy/vmware-exploitation

  A collection of links related to VMware escape exploits

  1.4k213

• lz520520/railgunlib

  Language:Go18133

• PENG-PLUS/SFBD

  Backdoor&后渗透工具

  Language:C218

• FilipePS/Traduzir-paginas-web

  Translate your page in real time using Google, Bing or Yandex

  Language:JavaScript5k596

• Neo23x0/yarGen

  yarGen is a generator for YARA rules

  Language:Python1.6k291

• LandGrey/ClassHound

  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码

  Language:Python70092

• 0x727/ShuiZe_0x727

  信息收集自动化工具

  Language:Python3.9k582

• lz520520/encrypt-js

  Language:Go356

• tihanyin/PSSW100AVB

  A list of useful Powershell scripts with 100% AV bypass (At the time of publication).

  Language:PowerShell1.1k173

• Y4er/ysoserial

  ysoserial修改版，着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。

  Language:Java672110

• sevagas/macro_pack

  macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

  Language:Python2.2k412

• Metnew/uxss-db

  🔪Browser logic vulnerabilities :skull_and_crossbones:

  Language:HTML69186