Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
12306
12306智能刷票,订票
1earn
个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
2022-HW-POC
2022 护网行动 POC 整理
3proxy
3proxy - tiny free proxy server
3vilMacro
This is a easy tool for gen VBA code, and bypass most antivirus
7kbscan-RDP-Sniper
一款有图形界面的RDP(3389)口令检测工具
acme.sh
A pure Unix shell script implementing ACME client protocol
cve-2017-2824-reverse-shell
listenquiet's Repositories
listenquiet/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
listenquiet/ARL-plus-docker
基于ARL-V2.6.2修改后的版本
listenquiet/Ashro_Auto_Attribution
listenquiet/autoDecoder
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
listenquiet/BypassAntiVirus
远控免杀系列文章及配套工具,搜集汇总了互联网上的几十种免杀工具和免杀方法,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
listenquiet/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
listenquiet/chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
listenquiet/ConfluenceMemshell
Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入
listenquiet/CVE-2023-36745
listenquiet/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability
listenquiet/CVE-2024-21762
out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability
listenquiet/cve-2024-21762-check
Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762
listenquiet/CVE-2024-38077-POC
伪代码,备份用,非原创,请关注原文作者: 漏洞作者已经发布分析文章第一篇:https://sites.google.com/site/zhiniangpeng/blogs/MadLicense
listenquiet/gitlab-version-nse
Nmap script to guess* a GitLab version.
listenquiet/golib
Golang packages used in frp and fft.
listenquiet/HaE
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
listenquiet/HostCollision
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
listenquiet/jdwp-codeifier
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)
listenquiet/john
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
listenquiet/mimikatz
A little tool to play with Windows security
listenquiet/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
listenquiet/NacosExploitGUI
Nacos漏洞综合利用GUI工具,集成了默认口令漏洞、SQL注入漏洞、身份认证绕过漏洞、反序列化漏洞的检测及其利用
listenquiet/nemo_go
Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率。
listenquiet/public-image-mirror
很多镜像都在国外。比如 gcr 。国内下载很慢,需要加速。致力于提供连接全世界的稳定可靠安全的容器镜像服务。
listenquiet/pywerview
A (partial) Python rewriting of PowerSploit's PowerView
listenquiet/RingQ
一款后渗透免杀工具,助力每一位像我这样的脚本小子快速实现免杀,支持bypass 360 火绒 Windows Defender
listenquiet/SBSCAN
SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行spring boot敏感信息扫描以及进行spring相关漏洞的扫描与验证。 (SBSCAN is a penetration testing tool focused on the spring framework that can scan spring boot sensitive information for specified sites and scan and validate spring related vulnerabilities.)
listenquiet/Shiro-key-10w
Shiro-key 十万量级
listenquiet/UniversalAMDFormBrowser
UniversalAMDFormBrowser
listenquiet/wiki-vitepress
面向网络安全从业者的知识文库