Pinned Repositories
2022-HW-POC
2022 护网行动 POC 整理
ACVM
awesome-python-cn
Python资源大全中文版,包括:Web框架、网络爬虫、模板引擎、数据库、数据可视化、图片处理等,由伯乐在线持续更新。
callMeDaddy
CORS-Detector
CVE-2022-26134
[PoC] Atlassian Confluence (CVE-2022-26134) - Unauthenticated OGNL injection vulnerability (RCE)
GLD
GithubLeakDetect
security_w1k1
collect
ViewFinder
:camera: ViewFinder - Remote isolated browser API for security, automation visibility and interactivity. Free web UI for headless Chrome browser. RBI. CBII. Remote browser isolation, embeddable BrowserView, secure chrome-as-a-service. Managed, variable bandwidth and co-browsing options available in Pro versions. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but free and source-available. Integrated secure document viewing with CDR from https://github.com/dosyago/p2%2e
XXE-Detect
lhtest429's Repositories
lhtest429/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️🔥
lhtest429/jd_seckill
京东秒杀商品抢购,目前只支持茅台抢购,不支持其他商品!
lhtest429/zhrtvc
Chinese real time voice cloning (VC) and Chinese text to speech (TTS). 好用的中文语音克隆兼中文语音合成系统,包含语音编码器、语音合成器、声码器和可视化模块。
lhtest429/Real-Time-Voice-Cloning
Clone a voice in 5 seconds to generate arbitrary speech in real-time
lhtest429/testing_wave
lhtest429/security_w1k1
collect
lhtest429/1earn
个人维护的安全知识框架,内容偏向于web
lhtest429/hack
🔰渗透测试资源库🔰黑客工具🔰维基解密文件🔰木马免杀🔰信息安全🔰技能树🔰数据库泄露🔰
lhtest429/Mars
Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等
lhtest429/GScan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
lhtest429/webshell
This is a webshell open source project
lhtest429/theHarvester
E-mails, subdomains and names Harvester - OSINT
lhtest429/bayonet
bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
lhtest429/crawlergo_x_XRAY
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
lhtest429/hello_word
This is first code
lhtest429/subDomains
互联网公司子域名收集
lhtest429/learnjavabug
Java安全相关的漏洞和技术demo,其中包括原生Java、Fastjson、Jackson、Hessian2以及XML反序列化漏洞利用和Dubbo(Hessian2反序列化)、Shiro(PaddingOracleCBC)等框架的exploits,并且还有Java Security Manager绕过、Dubbo-Hessian2安全加固、RMI利用等等实践代码。
lhtest429/AsyncRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (RAT)
lhtest429/callMeDaddy
lhtest429/hackbar2.1.3
lhtest429/xray
xray 安全评估工具
lhtest429/antSword
AntSword is a cross-platform website management toolkit.
lhtest429/Music-website-based-django
Design and development of music website based on Django
lhtest429/awesome-mitre-attack
A curated list of awesome resources related to Mitre ATT&CK™ Framework
lhtest429/redis-rogue-server
Redis(<=5.0.5) RCE
lhtest429/WeblogicScan
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持
lhtest429/osquery-attck
Mapping the MITRE ATT&CK Matrix with Osquery
lhtest429/maltrail
Malicious traffic detection system
lhtest429/BlueKeep
Proof of concept for CVE-2019-0708
lhtest429/K8CScan
大型内网渗透自定义插件化扫描器(附C#/VC/Delphi/Python插件Demo源码) 程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆、系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本