Pinned Repositories
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
awesome-hacking
awesome hacking chinese version
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
cheetah
a very fast brute force webshell password tool
cheetah-gui
Cheetah GUI
cve-2021-22005-exp
netspy
netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)
OneForAll
OneForAll是一款功能强大的子域收集工具
SharpHostInfo
SharpHostInfo是一款快速探测内网主机信息工具(深信服深蓝实验室天威战队强力驱动)
vhost_password_decrypt
vhost password decrypt
shmilylty's Repositories
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
shmilylty/netspy
netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)
shmilylty/cheetah
a very fast brute force webshell password tool
shmilylty/SharpHostInfo
SharpHostInfo是一款快速探测内网主机信息工具(深信服深蓝实验室天威战队强力驱动)
shmilylty/vhost_password_decrypt
vhost password decrypt
shmilylty/cve-2021-22005-exp
shmilylty/PentestNote
一些渗透姿势记录
shmilylty/All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms漏洞利用工具,爆破工具、内网横向及免杀、社工钓鱼以及应急响应等资料。
shmilylty/Awesome-POC
一个各类漏洞POC知识库
shmilylty/command
红队常用命令速查
shmilylty/ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
shmilylty/Awesome-Redteam
一个红队知识仓库
shmilylty/AwesomeXSS
Awesome XSS stuff
shmilylty/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
shmilylty/javasec
Java安全☞流下了不会Java的眼泪 : )
shmilylty/SharpWxDump
微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录));支持获取多用户信息,不定期更新新版本偏移,目前支持所有新版本、正式版本
shmilylty/weaverOA_sql_injection
泛微OA某版本的SQL注入漏洞
shmilylty/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
shmilylty/CrackSleeve4.7
shmilylty/Goby_PoC_RedTeam
Goby PoC
shmilylty/xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
shmilylty/pxplan
CVE-2023-2023
shmilylty/ReverseRDP_RCE
shmilylty/A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
shmilylty/blind-ssrf-chains
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
shmilylty/CVE-2021-21972
CVE-2021-21972 Exploit
shmilylty/cve-2021-21985_exp
cve-2021-21985 exploit
shmilylty/ENScan_GO
一款基于各大企业信息API的工具,解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。
shmilylty/random_c2_profile
Cobalt Strike random C2 Profile 修改版(适配云函数和CrossC2自定义protocol)
shmilylty/shmilylty