Pinned Repositories
Archive.org-Downloader
Python3 script to download archive.org books in PDF format
AutoRepeater
Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数
CVE-2022-30190-Follina-PowerPoint-Version
CVE-2022-30190 powerpoint version
EIGRPWN
Tools for performing attacks on EIGRP domains
gssapi-abuse
A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
OWASSRF-CVE-2022-41082-POC
PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers
spawn
Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks by spawning sacrificial process with Arbitrary Code Guard (ACG), BlockDll, and PPID spoofing.
nanaao's Repositories
nanaao/ali_waf_gui
阿里云Web 应用防火墙 操作工具 (API调用工具GUI版本) v1.0
nanaao/Antivirus-Scan
What AV? 一款轻量级的杀软在线识别的项目,持续更新ing
nanaao/ASwordx64
手握次元剑 / 仗梦走星辰
nanaao/AutorizePro
🧿 AutorizePro是一款越权检测 Burp 插件,通过增加AI分析模块 && 进一步优化检测逻辑,大幅降低误报率,提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding AI analysis modules, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.
nanaao/awesome-cloud-native-security
云原生安全资料库
nanaao/cloud-native-security-with-ebpf
《eBPF 云原生安全:原理与实践》书中示例程序的完整源代码
nanaao/CodeScan
一款轻量级匹配Sink点的代码审计扫描器,为了帮助红队过程中快速代码审计的小工具
nanaao/CVE-2024-23692
POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692
nanaao/CVE-2024-9264
Exploit for Grafana arbitrary file-read (CVE-2024-9264)
nanaao/ecapture
Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
nanaao/File-Tunnel
Tunnel TCP connections through a file
nanaao/FindToDeskPass
通过Dump内存读取ToDesk设备代码、连接密码
nanaao/Halberd
Halberd : Multi-Cloud Security Testing Tool to execute a comprehensive array of attack techniques across multiple surfaces via a simple web interface.
nanaao/JavaSecLab
JavaSecLab是一款综合型Java漏洞平台,提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范,覆盖多种漏洞场景,友好用户交互UI……
nanaao/JSNinja
JSNinja is a powerful tool designed for security researchers and developers looking to extract sensitive information and Urls from JavaScript files.
nanaao/Keydd
从流量包匹配敏感信息的工具-可用作bp、浏览器的下游代理。0感知、无卡顿,支持https。
nanaao/KrbRelay-SMBServer
nanaao/KubernetesCS
Kubernetes has its “ADCS” -- How To Backdoor a Kubernetes in silence and more persistent?
nanaao/LsassReflectDumping
This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone is created, it utilizes MINIDUMP_CALLBACK_INFORMATION callbacks to generate a memory dump of the cloned process
nanaao/NyxInvoke
NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support
nanaao/ProxyCat
一款部署于云端或本地的代理池中间件,可将静态代理IP灵活运用成隧道IP,提供固定请求地址,一次部署终身使用
nanaao/Rat-winos4.0-gh0st
免杀远控木马源码整理开源(银狐 winos 大灰狼 gh0st) Rat
nanaao/recaptcha-phish
Phishing with a fake reCAPTCHA
nanaao/ShadowDumper
Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive data in LSASS memory.
nanaao/SharpExclusionFinder
Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without relying on event logs
nanaao/SweetPotato2
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
nanaao/web-chains
Web 版 Java Payload 生成与漏洞利用工具,提供 Java 反序列化、Hessian 1/2 反序列化等 Payload 生成,以及 JNDI Exploit、Fake Mysql Exploit、JRMPListener 等相关利用
nanaao/Winscan
一键Windows应急响应检测脚本
nanaao/WY876POC
收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1000多个poc/exp,长期更新。
nanaao/XMachOViewer
XMachOViewer is a Mach-O viewer for Windows, Linux and MacOS