Pinned Repositories
-IIS-Backdoor
1135-CobaltStrike-ToolKit
about CobaltStrike
abuse-ssl-bypass-waf
Bypassing WAF by abusing SSL/TLS Ciphers
AndrewSpecial
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
apache-rootkit
A malicious Apache module with rootkit functionality
arbitrary-php-extension
这是一个实验性的PHP扩展,加载这个扩展后,每次请求将可以执行一段自己的PHP代码。
AWD-Predator-Framework
AWD攻防赛webshell批量利用框架
awesome-browser-exploit
awesome list of browser exploitation tutorials
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
BestShell
世界上最好用的php大马
uunoob's Repositories
uunoob/AndrewSpecial
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
uunoob/awesome-browser-exploit
awesome list of browser exploitation tutorials
uunoob/BestShell
世界上最好用的php大马
uunoob/browser-pwn
An updated collection of resources targeting browser-exploitation.
uunoob/BurpFastJsonScan
一款基于BurpSuite的被动式FastJson检测插件
uunoob/Cobalt_Strike_wiki
Cobalt Strike系列
uunoob/codeql-uboot
uunoob/cve_2019_0708_bluekeep_rce
bluekeep exploit
uunoob/Dumpert
LSASS memory dumper using direct system calls and API unhooking.
uunoob/echidna
Ethereum smart contract fuzzer
uunoob/EvilClippy
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
uunoob/Fake_Sqli_Bypass
Fake框架的自动化Fuzz WAF/IDS 功能
uunoob/fastjson_rce_tool
fastjson命令执行利用工具, remote code execute,JNDI服务利用工具 RMI/LDAP
uunoob/frida-all-in-one
《FRIDA操作手册》by @hluwa @r0ysue
uunoob/Godzilla
Godzilla source code
uunoob/JDSRC-Small-Classroom
京东SRC小课堂系列文章
uunoob/JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
uunoob/macro_pack
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
uunoob/MaliciousMacroMSBuild
Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.
uunoob/metasploit-framework
Metasploit Framework
uunoob/Penetration_Testing_Case
用于记录分享一些有趣的案例
uunoob/pochubs
PocHubs是为了整合网上知名开源框架的漏洞详细和POC
uunoob/proxy_for_sqlmap
额,我只是把两个别人的东西搞到了一起
uunoob/RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
uunoob/RGPerson
RGPerson - 随机身份生成脚本
uunoob/rogue-jndi
A malicious LDAP server for JNDI injection attacks
uunoob/Scripts
Small scripts that make life better
uunoob/TPscan
一键ThinkPHP漏洞检测
uunoob/Web-Security-Note
Record some common Web security sites
uunoob/webshell-venom
免杀webshell无限生成工具(一键吊打D盾)