luo0023's Stars
sairson/Yasso
强大的内网渗透辅助工具集-让Yasso像风一样 支持rdp,ssh,redis,postgres,mongodb,mssql,mysql,winrm等服务爆破,快速的端口扫描,强大的web指纹识别,各种内置服务的一键利用(包括ssh完全交互式登陆,mssql提权,redis一键利用,mysql数据库查询,winrm横向利用,多种服务利用支持socks5代理执行)
klinix5/ReverseRDP_RCE
Ridter/noPac
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
BeichenDream/BadPotato
Windows 权限提升 BadPotato
byt3bl33d3r/CrackMapExec
A swiss army knife for pentesting networks
sqlsec/BlueLotus_XSSReceiver
XSS平台 CTF工具 Web安全工具
tangxiaofeng7/Fofa-collect
Fofa平台采集工具
whirlwind110/tphack
Thinkphp3/5 Log文件泄漏利用工具
shadow1ng/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
theLSA/hack-cs-tools
client side (C-S) penetration toolkit
theLSA/CS-checklist
PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist
Mr-xn/BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
BeichenDream/Godzilla
哥斯拉
foryujian/yjdirscan
御剑目录扫描专业版,简单实用的命令行网站目录扫描工具,支持爬虫、fuzz、自定义字典、字典变量、UA修改、假404自动过滤、扫描控速等功能。
LandGrey/webshell-detect-bypass
绕过专业工具检测的Webshell研究文章和免杀的Webshell
p1g3/JSINFO-SCAN
递归式寻找域名和api。
taielab/awesome-hacking-lists
平常看到好的渗透hacking工具和多领域效率工具的集合
w-digital-scanner/w13scan
Passive Security Scanner (被动式安全扫描器)
Ascotbe/Kernelhub
:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
bitsadmin/wesng
Windows Exploit Suggester - Next Generation
jpillora/chisel
A fast TCP/UDP tunnel over HTTP
leebaird/discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
k8gege/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
DeEpinGh0st/Erebus
CobaltStrike后渗透测试插件
wafinfo/cobaltstrike
cobaltstrike插件
tennc/webshell
This is a webshell open source project
SkyBlueEternal/thinkphp-RCE-POC-Collection
thinkphp v5.x 远程代码执行漏洞-POC集合
lengjibo/RedTeamTools
记录自己编写、修改的部分工具
Mr-xn/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Dido1960/thinkphp
thinkphp反序列化漏洞复现及POC编写