Pinned Repositories
2022-HW-POC
2022 护网行动 POC 整理
ACVM
awesome-python-cn
Python资源大全中文版,包括:Web框架、网络爬虫、模板引擎、数据库、数据可视化、图片处理等,由伯乐在线持续更新。
callMeDaddy
CORS-Detector
CVE-2022-26134
[PoC] Atlassian Confluence (CVE-2022-26134) - Unauthenticated OGNL injection vulnerability (RCE)
GLD
GithubLeakDetect
security_w1k1
collect
ViewFinder
:camera: ViewFinder - Remote isolated browser API for security, automation visibility and interactivity. Free web UI for headless Chrome browser. RBI. CBII. Remote browser isolation, embeddable BrowserView, secure chrome-as-a-service. Managed, variable bandwidth and co-browsing options available in Pro versions. Like S2, WebGap, Bromium, Authentic8, Menlo Security and Broadcom, but free and source-available. Integrated secure document viewing with CDR from https://github.com/dosyago/p2%2e
XXE-Detect
lhtest429's Repositories
lhtest429/CORS-Detector
lhtest429/Micro8
Gitbook
lhtest429/php-malware-finder
Detect potentially malicious PHP files
lhtest429/Scanners-Box
The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑
lhtest429/upload-labs
一个帮你总结所有类型的上传漏洞的靶场
lhtest429/ApkHackTool
When I want to hack an apk, I always run some cmd , but now one click.
lhtest429/APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
lhtest429/attackdefense
lhtest429/awesome-jenkins-rce-2019
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
lhtest429/awesome-quant
**的Quant相关资源索引
lhtest429/BlueKeep
Proof of concept for CVE-2019-0708
lhtest429/Common_Spider
一个还算通用的爬虫脚本,可自己设定爬取的深度,可以把动态页面和外链单独分出来~
lhtest429/CVE-2018-20250
exp for https://research.checkpoint.com/extracting-code-execution-from-winrar
lhtest429/CVE-2019-3396_EXP
CVE-2019-3396 confluence SSTI RCE
lhtest429/DarkNet_ChineseTrading
🚇暗网中文网监控爬虫
lhtest429/dirBruter
lhtest429/djTestlt1
lhtest429/DNSLog
DNSLog 是一款监控 DNS 解析记录和 HTTP 访问记录的工具。
lhtest429/domain_hunter
A Burp Suite Extender that try to find sub-domain, similar-domain and related-domain of an organization, not only a domain!
lhtest429/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
lhtest429/K8CScan
大型内网渗透自定义插件化扫描器(附C#/VC/Delphi/Python插件Demo源码) 程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆、系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本
lhtest429/kaboom
automatic pentest
lhtest429/nmap-nse-scripts
My collection of nmap NSE scripts
lhtest429/Pompem
Find exploit tool
lhtest429/Security-Operation
安全运维技巧整理
lhtest429/src
日常src平台域名收集
lhtest429/taro
多端统一开发框架,支持用 React 的开发方式编写一次代码,生成能运行在微信小程序/百度智能小程序/支付宝小程序、H5、React Native 等的应用。
lhtest429/vtest
用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
lhtest429/WAScan
WAScan - Web Application Scanner
lhtest429/weblogic-scan
weblogic 漏洞扫描工具