Pinned Repositories
Gofreeproxy
自用的动态代理小工具
subsocks
A Socks5 proxy that encapsulates Socks5 in other security protocols
Bundler-bypass
免杀捆绑器,过国内主流杀软。A Bundler bypass anti-virus
cf-backup
云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。
ClashX
CVE-2024-26026
CVE-2024-26026: BIG-IP Next Central Manager API UNAUTHENTICATED SQL INJECTION
FakeToa
TCP IP伪造,建议使用 ubuntu 22.04
MemShell-1
Tomcat的Filter型免杀内存马,主要思路是Bypass各种检查手段
QVD-2023-6271
Alibab Nacos <= 2.2.0 Unauthorized Login POC EXP
httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
passwa11's Repositories
passwa11/QVD-2023-6271
Alibab Nacos <= 2.2.0 Unauthorized Login POC EXP
passwa11/pinduoduo_backdoor_unpacker
passwa11/glider_guid41asd4asd
使用Glider将节点转换成爬虫代理池,每秒切换IP,本项目包含使用教程,并提供将clash订阅转换为glider所支持的格式
passwa11/LoggerPlusPlus
Advanced Burp Suite Logging Extension
passwa11/Re2Pcap
Re2Pcap: Create PCAP file from raw HTTP request or response in seconds
passwa11/Apache-NiFi-Api-RCE
Apache NiFi Processor RCE
passwa11/Apache-Solr-8.3.1-RCE
RCE on Apache Solr 8.3.1
passwa11/BurpCrypto
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
passwa11/CVE-2023-27524
Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset
passwa11/Disclosures
passwa11/kscan
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
passwa11/CVE-2023-0386
CVE-2023-0386 analysis and Exp
passwa11/CVE-2023-25157
CVE-2023-25157 - GeoServer SQL Injection - PoC
passwa11/CVE-2023-28121
WooCommerce Payments: Unauthorized Admin Access Exploit
passwa11/CVE-2023-29007
PoC repository for CVE-2023-29007
passwa11/CVE-2023-29017-reverse-shell
passwa11/CVE-2023-33246_RocketMQ_RCE_EXPLOIT
CVE-2023-33246 RocketMQ RCE Detect By Version and Exploit
passwa11/fuckhoneypot
FuckHoneypot is 去他妈的蜜罐
passwa11/GodzillaMemoryShellProject
passwa11/jeecmsX1.2
jeecmsX1.2项目分析
passwa11/keyboardhook
winform keyboardhook
passwa11/LR
力软开发框架
passwa11/OA-vulnerability-tool
包括(致远,泛微,通达,用友,万户,蓝凌),常见的oa漏洞均可检测
passwa11/pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
passwa11/PocList
Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BI
passwa11/QAX_VPN_Crack
奇安信VPN任意用户密码重置
passwa11/ShellGenerate
哥斯拉jsp/jspx免杀webshell生成器
passwa11/static
static img repo
passwa11/su18-ysoserial
此项目为su18大佬的仓库镜像,如有问题可发issuse删库
passwa11/Vulns
WAVLINK config export CVE-2022-48165