shmilylty

Developer, pentester and bug hunter.

localhost

Pinned Repositories

xray
一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Language:Vue9.8k 207 4451.8k
awesome-hacking
awesome hacking chinese version
1.1k 74 2284
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
83 9 041
cheetah
a very fast brute force webshell password tool
Language:Python622 23 13154
cheetah-gui
Cheetah GUI
Language:Python133 9 229
cve-2021-22005-exp
Language:Python182 5 347
netspy
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
Language:Go1.8k 18 12200
OneForAll
OneForAll是一款功能强大的子域收集工具
Language:Python7.9k 101 3091.3k
SharpHostInfo
SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）
Language:C#526 7 646
vhost_password_decrypt
vhost password decrypt
Language:Python225 4 061

shmilylty's Repositories

shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
Language:Python7.9k 101 3091.3k
shmilylty/netspy
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
Language:Go1.8k 18 12200
shmilylty/cheetah
a very fast brute force webshell password tool
Language:Python622 23 13154
shmilylty/SharpHostInfo
SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）
Language:C#526 7 646
shmilylty/vhost_password_decrypt
vhost password decrypt
Language:Python225 4 061
shmilylty/cve-2021-22005-exp
Language:Python182 5 347
shmilylty/PentestNote
一些渗透姿势记录
28 2 010
shmilylty/All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms漏洞利用工具，爆破工具、内网横向及免杀、社工钓鱼以及应急响应等资料。
10 0 04
shmilylty/Awesome-POC
一个各类漏洞POC知识库
10 0 02
shmilylty/command
红队常用命令速查
7 2 010
shmilylty/ShellcodeLoader
该项目为Shellocde加载器，详细介绍了我们如何绕过防病毒软件，以及该工具如何使用
71
shmilylty/Awesome-Redteam
一个红队知识仓库
Language:HTML5 1 02
shmilylty/AwesomeXSS
Awesome XSS stuff
Language:JavaScript4 1 0
shmilylty/fscan
一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。
Language:Go4 1 01
shmilylty/javasec
Java安全☞流下了不会Java的眼泪 : )
Language:Java4 1 03
shmilylty/SharpWxDump
微信客户端取证，可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录))；支持获取多用户信息，不定期更新新版本偏移，目前支持所有新版本、正式版本
Language:C#4 1 0
shmilylty/weaverOA_sql_injection
泛微OA某版本的SQL注入漏洞
Language:Python4 2 0
shmilylty/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Language:Jupyter Notebook3 1 02
shmilylty/CrackSleeve4.7
Language:Java2 2 0
shmilylty/Goby_PoC_RedTeam
Goby PoC
2
shmilylty/xray
一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Language:Vue2 1 01
shmilylty/pxplan
CVE-2023-2023
1
shmilylty/ReverseRDP_RCE
Language:C++1 2 01
shmilylty/A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
2
shmilylty/blind-ssrf-chains
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
1 01
shmilylty/CVE-2021-21972
CVE-2021-21972 Exploit
Language:Python1 0
shmilylty/cve-2021-21985_exp
cve-2021-21985 exploit
Language:Python2 0
shmilylty/ENScan_GO
一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
Language:Go1 0
shmilylty/random_c2_profile
Cobalt Strike random C2 Profile 修改版（适配云函数和CrossC2自定义protocol）
Language:Jinja1 0
shmilylty/shmilylty
2 0