Pinned Repositories
Bypass_Disable_functions_Shell
一个各种方式突破Disable_functions达到命令执行的shell
bypass_disablefunc_via_LD_PRELOAD
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
Cachet
📛 An open source status page system for everyone.
CDK
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
ctf-tools
Some setup scripts for security research tools.
CVE-2021-30551
my exp for chrome V8 CVE-2021-30551
CVE-2021-4034
PoC for CVE-2021-4034
hack_tools_for_me
自己为了方便收集的小工具
Local-user-Privilege-Escalation-EXP
There is some EXP maybe help a local user or malicious program obtain system privileges on the targeted machine.
pentest_study
从零开始内网渗透学习
ur10ser's Repositories
ur10ser/Bypass_Disable_functions_Shell
一个各种方式突破Disable_functions达到命令执行的shell
ur10ser/Local-user-Privilege-Escalation-EXP
There is some EXP maybe help a local user or malicious program obtain system privileges on the targeted machine.
ur10ser/bypass_disablefunc_via_LD_PRELOAD
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
ur10ser/Cachet
📛 An open source status page system for everyone.
ur10ser/CDK
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
ur10ser/CVE-2021-30551
my exp for chrome V8 CVE-2021-30551
ur10ser/CVE-2021-4034
PoC for CVE-2021-4034
ur10ser/dingtalk-RCE
ur10ser/FakeToa
Fake IP sources using Linux's BPF feature
ur10ser/GoBypass
Golang免杀生成工具,参考网上已有的免杀方式实现的半自动免杀马生成工具,需要本地安装Golang环境,支持多种参数与方式生成
ur10ser/hack-fastjson-1.2.80
ur10ser/IntruderPayloads
A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
ur10ser/IOS
ur10ser/JNDIExploit-1
一款用于 JNDI注入 利用的工具,大量参考/引用了 Rogue JNDI 项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。(from https://github.com/feihong-cs/JNDIExploit)
ur10ser/Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
ur10ser/Paddle
PArallel Distributed Deep LEarning: Machine Learning Framework from Industrial Practice (『飞桨』核心框架,深度学习&机器学习高性能单机、分布式训练和跨平台部署)
ur10ser/Penetration_Testing_Case
用于记录分享一些有趣的案例
ur10ser/php_filter_chain_generator
ur10ser/PrintNightmare
ur10ser/prvd
PHP Runtime Vulnerability Detection
ur10ser/sec-jobs
信息安全实习和校招的面经、真题和资料 减少安全选手找实习/工作的痛苦
ur10ser/Security-PPT
大安全各领域各公司各会议分享的PPT
ur10ser/SharpChromium
.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.
ur10ser/shiro_rce_exp
Shiro RCE (Padding Oracle Attack)
ur10ser/TarsWeb
TARS Projects Dashboard
ur10ser/test
ur10ser/tongdaoa_poc
详见公众号
ur10ser/Urldns
ur10ser/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
ur10ser/xxl-job
A distributed task scheduling framework.(分布式任务调度平台XXL-JOB)