Pinned Repositories
-
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
ashxLessSpy
ashx China Chopper WebShell
backdoor-apk
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.
CMS-Hunter
CMS漏洞测试用例集合
dirsearch
Web path scanner
linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
penetration
渗透 超全面的渗透资料💯 包含:0day,xss,sql注入,提权……
SSRFX
CVE-2014-4210+Redis未授权访问
windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
ppuuoo's Repositories
ppuuoo/CMS-Hunter
CMS漏洞测试用例集合
ppuuoo/dirsearch
Web path scanner
ppuuoo/linux-kernel-exploits
linux-kernel-exploits Linux平台提权漏洞集合
ppuuoo/penetration
渗透 超全面的渗透资料💯 包含:0day,xss,sql注入,提权……
ppuuoo/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
ppuuoo/ashxLessSpy
ashx China Chopper WebShell
ppuuoo/backdoor-apk
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.
ppuuoo/burpFakeIP
一个用于伪造ip地址进行爆破的Burp Suite插件
ppuuoo/bypasswaf
关于安全狗和云锁的自动化绕过脚本
ppuuoo/chunked-coding-converter
Burp suite 分块传输辅助插件
ppuuoo/ds_store_exp
A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
ppuuoo/edit-gencon
geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.
ppuuoo/FindSomething
基于chrome插件的被动式信息泄漏检测工具
ppuuoo/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
ppuuoo/hash_extender
ppuuoo/libprocesshider
Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
ppuuoo/MYSQL_SQL_BYPASS_WIKI
mysql注入,bypass的一些心得
ppuuoo/Neo-reGeorg
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
ppuuoo/NEW_xp_CAPTCHA
xp_CAPTCHA(白嫖版) burp 验证码 识别 burp插件
ppuuoo/OneForAll
OneForAll是一款功能强大的子域收集工具
ppuuoo/onlinetools
在线cms识别|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..
ppuuoo/PenetrationTest-Tips
渗透测试,渗透测试小技巧,渗透测试Tips,师傅们跟我一起维护更新吧~
ppuuoo/phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
ppuuoo/QuasarRAT
Remote Administration Tool for Windows
ppuuoo/root_password
ppuuoo/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
ppuuoo/SuperSQLInjectionV1
超级SQL注入工具(SSQLInjection)是一款基于HTTP协议自组包的SQL注入工具,采用C#开发,直接操作TCP会话来进行HTTP交互,支持出现在HTTP协议任意位置的SQL注入,支持各种类型的SQL注入,支持HTTPS模式注入;支持以盲注、错误显示、Union注入等方式来获取数据;支持Access/MySQL/SQLServer/Oracle/PostgreSQL/DB2/SQLite/Informix等数据库;支持手动灵活的进行SQL注入绕过,可自定义进行字符替换等绕过注入防护。本工具为渗透测试人员、信息安全工程师等掌握SQL注入技能的人员设计,需要使用人员对SQL注入有一定了解。
ppuuoo/WebShell
Webshell && Backdoor Collection
ppuuoo/webshell-1
This is a webshell open source project
ppuuoo/webtorrent
⚡️ Streaming torrent client for the web