passwa11's Stars
Mr-xn/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Ackites/KillWxapkg
自动化反编译微信小程序,小程序安全评估工具,发现小程序安全问题,自动解密,解包,可还原工程目录,支持Hook,小程序修改
glauth/glauth
A lightweight LDAP server for development, home use, or CI
b4rtaz/distributed-llama
Tensor parallelism is all you need. Run LLMs on an AI cluster at home using any device. Distribute the workload, divide RAM usage, and increase inference speed.
c0ny1/jsEncrypter
一个用于前端加密Fuzz的Burp Suite插件
assetnote/nowafpls
Burp Plugin to Bypass WAFs through the insertion of Junk Data
Vu1nT0tal/Vehicle-Security-Toolkit
汽车/安卓/固件/代码安全测试工具集
threedr3am/ZhouYu
(周瑜)Java - SpringBoot 持久化 WebShell 学习demo(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)
Aethersailor/Custom_OpenClash_Rules
分流完善的 OpenClash 订阅转换模板,搭配保姆级 OpenClash 设置教程,无需套娃即可实现完美分流、DNS无污染无泄漏,且快速的科学上网体验。
lypd0/DeadPotato
DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.
HG-ha/ICP_Query
ICP备案查询,从工业和信息化部政务服务平台抓取实时数据,提供本地API,自动过验证码,支持Web、APP、小程序、快应用名称查询,违法违规应用查询,支持根据备案号查询,支持根据企业名称查询
qi4L/CVE-2024-38077
RDL的堆溢出导致的RCE
LxxxSec/CTF-Java-Gadget
CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
INotGreen/SharpScan
内网资产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破(SSH、SMB、MsSQL等)、Socks代理,一键自动化+无文件落地扫描
P001water/P1finger
P1finger - 红队行动下的重点资产指纹识别工具
chainreactors/fingers
ALLINONE framework and technology detect lib
CllmsyK/YYBaby-Spring_Scan
一款针对Spring框架的漏洞扫描及漏洞利用图形化工具
Fheidt12/Windows_Log
基于Go编写的windows日志分析工具
Chocapikk/CVE-2024-36401
GeoServer Remote Code Execution
two06/CerealKiller
.NET deserialization hunter
Muhansrc/springboot_scan
SpringBoot 漏洞扫描利用工具,默认优先使用收集路径进行扫描(springboot_urls.txt) 当扫描不存在接口时,使用api前缀拼接扫描,可以自行添加
refraction-networking/uquic
Low-level access to the QUIC Initial Packet for mimicry purposes, hard fork of quic-go.
badboycxcc/Exchange-Info
Exchange 信息收集工具
xiaogang000/XG_JLGJ
专为安服小白定制的SQL注入靶场,上手简单,练习sql注入的不二之选
binganao/Ruoyi-All
若依后台定时任务一键利用
passer-W/Supershell-Counter
Supershell反制
lightr3d/CVE-2024-21006_jar
CVE-2024-21006 exp
Arcueld/Afrp
howmp/zigshellcode
dust-life/CVE-2019-18935-memShell