Pinned Repositories
CTF-writeups
CTF writeups
reCAPTCHA
reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件
1earn
暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
angr-doc-zh_CN
Suspended
aura
Python source code auditing and static analysis on a large scale
Awesome-POC
一个漏洞POC知识库
bandit
Bandit is a tool designed to find common security issues in Python code.
BMC-Viewer-Backup
A Backup for BMC Viewer
bylibrary
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
codimd
CodiMD - Realtime collaborative markdown notes on all platforms.
myxiangshi's Repositories
myxiangshi/Awesome-POC
一个漏洞POC知识库
myxiangshi/codimd
CodiMD - Realtime collaborative markdown notes on all platforms.
myxiangshi/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
myxiangshi/crypto-attacks
Python implementations of cryptographic attacks and utilities.
myxiangshi/qsnctf-python
青少年CTF的Python包,方便大家调用一些CTF常用功能。
myxiangshi/1earn
暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
myxiangshi/commix
Automated All-in-One OS Command Injection Exploitation Tool.
myxiangshi/ToolsFx
基于kotlin+tornadoFx的跨平台密码学工具箱.包含编解码,编码转换,加解密, 哈希,MAC,签名,大数运算,压缩,二维码功能,ctf等实用功能,支持插件
myxiangshi/RsaCtfTool
RSA attack tool (mainly for ctf) - retreive private key from weak public key and/or uncipher data
myxiangshi/oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
myxiangshi/hashcat.launcher
hashcat.launcher is a cross-platform app that run and control hashcat
myxiangshi/wechat-export
获取微信聊天记录数据库密钥并导出聊天记录,各版本通用。
myxiangshi/lx-music-desktop
一个基于 electron 的音乐软件
myxiangshi/bylibrary
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
myxiangshi/PenKitGui
渗透测试武器库
myxiangshi/ExpLangcn
myxiangshi/Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
myxiangshi/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
myxiangshi/phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
myxiangshi/ZhuYan
一个由各种图形化渗透工具组成的工具集
myxiangshi/ThinkphpGUI
Thinkphp(GUI)漏洞利用工具,支持各版本TP漏洞检测,命令执行,getshell。
myxiangshi/JavaSecInterview
Java安全研究与安全开发面试题库,同是也是常见知识点的梳理和总结,包含问题和详细的答案,计划定期更新
myxiangshi/patching
An Interactive Binary Patching Plugin for IDA Pro
myxiangshi/PyWeChatSpy
A spy program that helps people make better use of WeChat
myxiangshi/DVWA
Damn Vulnerable Web Application (DVWA)
myxiangshi/JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
myxiangshi/xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
myxiangshi/vulns-2022
本项目用于搜集 2022 年的漏洞,注意:本项目并不刻意搜集 POC 或 EXP,主要以CVE-2021、CVE-2022 为关键词,包含但不限于漏洞资讯、漏洞复现、漏洞分析、漏洞验证、漏洞利用
myxiangshi/CVE-2021-31805
S2-062 (CVE-2021-31805) / S2-061 / S2-059 RCE
myxiangshi/s2-062
远程代码执行S2-062 CVE-2021-31805验证POC