Pinned Repositories
AttackWebFrameworkTools-5.0
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
awesome-spider
爬虫集合
BLEN
漏洞批量验证框架
build-marshalsec
Chinese-translation-ATT-CK-framework
ATT&CK 框架图中文翻译版 原为安恒奖品,自我二次翻译,修改了一些小的翻译错误问题,自我保存即可
CVE-2021-4034
CVE-2021-4034 1day
DGA
The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research the possibility of applying machine learning and neural networks to detect and classify malicious domains.
https-github.com-Lucifer1993-0day
https-github.com-necreas1ng-VLANPWN
learnjavabug
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
takeboy's Repositories
takeboy/https-github.com-Lucifer1993-0day
takeboy/https-github.com-necreas1ng-VLANPWN
takeboy/learnjavabug
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
takeboy/AttackWebFrameworkTools-5.0
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
takeboy/awesome-spider
爬虫集合
takeboy/BLEN
漏洞批量验证框架
takeboy/CVE-2021-4034
CVE-2021-4034 1day
takeboy/easyexcel
快速、简单避免OOM的java处理Excel工具
takeboy/File-Download-Generator
文件下载命令快捷生成器,单文件版
takeboy/hide_execute_memory
隐藏可执行内存
takeboy/hongduiziliao
红队渗透测试|攻防|学习|工具|分析|研究资料汇总
takeboy/https-github.com-abatchy17-WindowsExploits
takeboy/https-github.com-dr0op-bufferfly
takeboy/https-github.com-taomujian-linbing
takeboy/https-github.com-veo-vscan
takeboy/https-github.com-White-hua-Apt_t00ls-
takeboy/lamda
⚡️ Android reverse engineering & automation framework | 史上最强安卓抓包/逆向/HOOK & 云手机/远程桌面/自动化辅助框架,你的工作从未如此简单快捷。
takeboy/linux-command
Linux命令大全搜索工具,内容包含Linux命令手册、详解、学习、搜集。https://git.io/linux
takeboy/linux-exploit-suggester
Linux privilege escalation auditing tool
takeboy/logbackRceDemo
The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment where there are arbitrary file uploads, and then use the `scan` attribute in the loghack configuration file to cooperate with the logback vulnerability to implement RCE.
takeboy/marshalsec
takeboy/nali
An offline tool for querying IP geographic information and CDN provider.一个查询IP地理信息和CDN服务提供商的离线终端工具.
takeboy/name-fuzz
针对目标已知信息的字典生成工具
takeboy/Pentest101
每周(也许不)分享一些关于渗透测试的知识点
takeboy/POChouse
POC&EXP仓库、hvv弹药库、Nday、1day
takeboy/proxy_pool
Python爬虫代理IP池(proxy pool)
takeboy/scripts
拿来练手的油猴脚本
takeboy/secguide
面向开发人员梳理的代码安全指南
takeboy/ThunderSearch
【信息搜集】闪电搜索器;GUI图形化渗透测试信息搜集工具
takeboy/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose