Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
0day-1
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
0xagent
CobaltStrike 4.0 - 4.5 Patch
100-redteam-projects
Projects for security students
FlowForward
一款基于命令行实现的功能强大的TCP流量转发工具,用于在后渗透中的横向越权时使用,该工具可定向转发数据包,打破内外网屏障。 A powerful TCP traffic forwarding tool based on the command line, which can be used in the horizontal ultra vires of post penetration. The tool can forward packets directio
Londly01-safety-tool
自动化进行资产探测及漏洞扫描|红蓝对抗 | 快速打点 | 适用黑客进行赏金活动、SRC活动、大规模攻击使用 | 护网
ProxyDll
beta
Web-vulnerability-learning
常见漏洞原理,测试方法学习记录
startagain2016's Repositories
startagain2016/ProxyDll
beta
startagain2016/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
startagain2016/chisel
A fast TCP/UDP tunnel over HTTP
startagain2016/CS-Situational-Awareness-BOF
Situational Awareness commands implemented using Beacon Object Files
startagain2016/CVE-2024-26229
CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
startagain2016/CVE-2024-4577
PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
startagain2016/CVE-2024-4577-PHP-RCE
[漏洞复现] 全球首款利用PHP默认环境的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP,共享原创EXP,支持SSRF,支持绕过WAF。The world's first CVE-2024-4577 PHP-CGI RCE exploit utilizing the default PHP environment. Sharing original exploit, supports SSRF, supports WAF bypass.
startagain2016/CVE-2024-4578
CVE-2024-4577 is a critical vulnerability in PHP affecting CGI configurations, allowing attackers to execute arbitrary commands via crafted URL parameters.
startagain2016/CyberEdge
互联网资产综合扫描/攻击面测绘
startagain2016/deoptimizer
Machine code de-optimizer.
startagain2016/Dsebler
Reimplementation of the KExecDD DSE bypass technique.
startagain2016/fs
符合个人渗透开发习惯的fscan
startagain2016/GoRedOps
🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
startagain2016/gost
GO Simple Tunnel - a simple tunnel written in golang
startagain2016/gwpsan
GWPSan: Sampling-Based Sanitizer Framework
startagain2016/hookchain
HookChain: A new perspective for Bypassing EDR Solutions
startagain2016/InjectTools
一款集成了Ring0和3以及APC的提权注入工具
startagain2016/linkding
Self-hosted bookmark manager that is designed be to be minimal, fast, and easy to set up using Docker.
startagain2016/LunarVim
🌙 LunarVim is an IDE layer for Neovim. Completely free and community driven.
startagain2016/ollama
Get up and running with Llama 3.1, Mistral, Gemma 2, and other large language models.
startagain2016/PentesterSpecialDict
Dictionary sets often used in penetration testing work , 渗透测试工作中经常使用的字典集。
startagain2016/POC-3
收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了600多个poc/exp,长期更新。
startagain2016/POC-4
wy876 POC
startagain2016/qengine
C++ 17 or higher control flow obfuscation library for windows binaries
startagain2016/RflDllOb
Reflective DLL Injection Made Bella
startagain2016/Rscan
自动化扫描利器,指纹识别更精准,漏洞扫描更全面
startagain2016/schtasks
create schtasks bypass AV
startagain2016/ScopeSentry-Scan
ScopeSentry工具扫描端源码
startagain2016/vulnhuntr
Zero shot vulnerability discovery using LLMs
startagain2016/wstunnel
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available