Pinned Repositories
Automated_Incloud_Scan
ClamAV_0Day_exploit
ClamAV_0Day_exploit
CVE-2020-16898-exp
CVE-2022-3656
DeepSeek-Vulnerability-Analyzer
Joomla-3.4.6-RCE
Joomla 3.4.6 – Remote Code Execution
loxs-optimized
Online-Crawler-Wayback-Machine
Online-Crawler-Wayback-Machine
Server-2012---RCE
server2012-Group-policy-RCE
TP5_Arbitrary_file_read
momika233's Repositories
momika233/ClamAV_0Day_exploit
ClamAV_0Day_exploit
momika233/Server-2012---RCE
server2012-Group-policy-RCE
momika233/CVE-2020-16898-exp
momika233/0day-RCE-exploit-on-vBulletin-5xx
https://twitter.com/momika233
momika233/SocksOverRDP
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
momika233/alicloud-tools
阿里云ECS、策略组辅助小工具
momika233/cve-2020-5902
momika233/Optergy_2.3.0a_RCE
momika233/weblogic_exploit
weblogic漏洞利用工具
momika233/ZombieVPN
CVE-2020-12828 PoC and Analysis.
momika233/Active-Directory-Pentest-Notes
个人域渗透学习笔记
momika233/AppProxyC2
momika233/AttackWebFrameworkTools
本软件首先集成危害性较大前台rce(无需登录,或者登录绕过执行rce)。反序列化(利用链简单)。上传getshell。sql注入等高危漏洞直接就可以拿权限出数据。其次对一些构造复杂exp漏洞进行检测。傻瓜式导入url即可实现批量测试,能一键getshell检测绝不sql注入或者不是只检测。其中thinkphp 集成所有rce Exp Struts2漏洞集成了shack2 和k8 漏洞利用工具所有Exp并对他们的exp进行优化和修复此工具的所集成漏洞全部是基于平时实战中所得到的经验从而写入到工具里。例如:通达oA一键getshell实战测试 struts2一键getshell 等等
momika233/awvs-decode
awvs script decode 最新最好的解码方法
momika233/BlackDragon
An Adavnced Automation Tool For Web-Recon Developed For Linux Systems
momika233/CVE-2020-16898
Proof-of-Concept (PoC) script to exploit IPv6 (CVE-2020-16898).
momika233/CVE-2020-16947
PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)
momika233/CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
momika233/exploits
exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House
momika233/freeproxy
免费获取http代理并生成proxifier配置文件
momika233/HouQing
momika233/IPRotate_Burp_Extension
Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
momika233/momika233.io
momika233/ProxySU
Xray,V2ray,Trojan,NaiveProxy, Trojan-Go, ShadowsocksR(SSR),Shadowsocks-libev及相关插件,MTProto+TLS 一键安装工具,windows下用(一键科学上网)
momika233/pwn_jenkins
Notes about attacking Jenkins servers
momika233/Robber
Robber is open source tool for finding executables prone to DLL hijacking
momika233/SuperWordlist
基于实战沉淀下的各种弱口令字典
momika233/The-Hitchhiker-s-Guide-to-the-Blockchain-Sec
《区块链安全入门与实战》
momika233/uCodeDisasm
momika233/XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities