lamscun

Pinned Repositories

123pro1234Pro
Language:HTML0 1 00
adminwin1
Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
Language:C++01
AutoPayLoad
Language:Java1 1 00
Burp-Collab-Fixed
Fool help to Fixed Burp Suite Collaborator Client
Language:Java8 1 22
CoCheMaDocLab4
Language:C1 1 01
reFlutter
Flutter Reverse Engineering Framework
Language:Python1 0 00
relative-url-extractor
A small tool that extracts relative URLs from a file.
Language:Ruby10

lamscun's Repositories

lamscun/adminwin1
Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
Language:C++01
lamscun/Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
01
lamscun/bypass-url-parser
bypass-url-parser
lamscun/confused
Tool to check for dependency confusion vulnerabilities in multiple package management systems
lamscun/darter
:detective: Dart / Flutter VM snapshot analyzer
lamscun/dismap
Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点
lamscun/dontgo403
Tool to bypass 40X response codes.
lamscun/eventlistener-xss-recon
lamscun/femida
Automated blind-xss search for Burp Suite
lamscun/FinalRecon
The Last Web Recon Tool You'll Need
lamscun/follina.py
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
lamscun/frida-android-helper
Frida Android utilities
lamscun/hackingtool
ALL IN ONE Hacking Tool For Hackers
lamscun/HuntTheBug
Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack > URL + JavaScript Scan > Dir Brute Forcing > Open Port Check With Telegram Bot Notification
lamscun/JNDI-Exploit-Kit
JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection）
lamscun/libmatoya
Cross-platform application development.
lamscun/linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Exploitation steps.
lamscun/Log4j_injection
Language:Java
lamscun/MyPapers
Repository for hosting my research papers
lamscun/protobuf-decoder
A simple Google Protobuf Decoder for Burp
lamscun/python-log4rce
An All-In-One Pure Python PoC for CVE-2021-44228
lamscun/raccoon4
APK Downloader for Google Play
lamscun/RedTeam-OffensiveSecurity
Tools & Interesting Things for RedTeam Ops
lamscun/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
lamscun/SpringCore0day
SpringCore0day from https://share.vx-underground.org/
lamscun/sql-injection-payload-list
🎯 SQL Injection Payload List
lamscun/STEWS
A Security Tool for Enumerating WebSockets
lamscun/turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
lamscun/xnLinkFinder
A python tool used to discover endpoints for a given target
lamscun/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List