we1h0

Life is short , try everything.

PoxTeamChina.ShenZhen

Pinned Repositories

awesome-java-security-checklist
awesome-java-security-checklist(关于Java安全方面,Java基础/审计/修复/设计/规范)
123 2 026
cobaltstrike-yara
用于检测和分析 Cobalt Strike 的代码和yara规则
Language:YARA4 1 01
ElegyRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (Be Based On AsyncRAT)
Language:C#165 8 372
IBOS-OA-Remote-Download-Getshell
IBOS OA 4.x /data/restore.php数据恢复工具远程下载Getshell漏洞
Language:Python3 0 02
redteam-tips
关于红队方面的学习资料
1.2k 24 1183
redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
4 0 02
Security-Development-Lifecycle-Reference
Security Development LifeCycle Process (安全开发生命周期参考)
27 1 011
SecurityManageFramwork
Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Language:Python426 26 5157
SiteServer-CMS-Remote-download-Getshell
SiteServer CMS 5.x远程模板下载Getshell漏洞
Language:Python68 2 024
web-sec-interview
Information Security (Web Security/Penetration Testing Direction) Interview Questions/Solutions 信息安全(Web安全/渗透测试方向)面试题/解题思路
475 13 2103

we1h0's Repositories

we1h0/redteam-tips
关于红队方面的学习资料
1.2k 24 1183
we1h0/web-sec-interview
Information Security (Web Security/Penetration Testing Direction) Interview Questions/Solutions 信息安全(Web安全/渗透测试方向)面试题/解题思路
475 13 2103
we1h0/SecurityManageFramwork
Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Language:Python426 26 5157
we1h0/ElegyRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (Be Based On AsyncRAT)
Language:C#165 8 372
we1h0/awesome-java-security-checklist
awesome-java-security-checklist(关于Java安全方面,Java基础/审计/修复/设计/规范)
123 2 026
we1h0/SiteServer-CMS-Remote-download-Getshell
SiteServer CMS 5.x远程模板下载Getshell漏洞
Language:Python68 2 024
we1h0/cobaltstrike-yara
用于检测和分析 Cobalt Strike 的代码和yara规则
Language:YARA4 1 01
we1h0/redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
4 0 02
we1h0/IBOS-OA-Remote-Download-Getshell
IBOS OA 4.x /data/restore.php数据恢复工具远程下载Getshell漏洞
Language:Python3 0 02
we1h0/JspWebShell
Language:Java3 1 02
we1h0/Talking-about-Intranet-Penetration
漫谈内网渗透
3 2 00
we1h0/Cloud-Bucket-Leak-Detection-Tools
六大云存储，泄露利用检测工具
Language:Python2 0 0
we1h0/Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~
2 0 01
we1h0/Personal-article-summary
2 1 01
we1h0/Red-Team-Tools
2 1 04
we1h0/commando-vm
Complete Mandiant Offensive VM (Commando VM), the first full Windows-based penetration testing virtual machine distribution. The security community recognizes Kali Linux as the go-to penetration testing platform for those that prefer Linux. Commando VM is for penetration testers that prefer Windows. We know that building a Windows penetration testing environment can be tedious - we aim to streamline and simplify this process. Commando VM includes over 140 tools.
Language:PowerShell1 0 0
we1h0/evildll
Malicious DLL (Reverse Shell) generator for DLL Hijacking
Language:Shell1 0 01
we1h0/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Language:Python1 0 0
we1h0/Reverse-IP
IP反查域名小脚本，用于信息收集和旁注
Language:Python1 0 02
we1h0/AM0N-Eye
0 0
we1h0/boko
Application Hijack Scanner for macOS
Language:Python0 0
we1h0/BREAK
业务风险枚举与规避知识框架（Business Risk Enumeration & Avoidance Kownledge）
Language:Vue0 0
we1h0/DongTai
DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, multi-request related vulnerabilities (including logic vulnerabilities, unauthorized access vulnerabilities, etc.), third-party component vulnerabilities, etc.
Language:Shell0 0
we1h0/DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
Language:Java0 0
we1h0/DongTai-Doc
DongTai IAST documentation.
Language:HTML0 0
we1h0/Red-Teaming-Bypass-AV
Mainly recorded in the daily work of the red team, how I Bypass the Anti virus
2 0
we1h0/SCFProxy
A proxy tool based on cloud function.
Language:Python0 0
we1h0/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Language:PHP0 02
we1h0/we1h0
1 01
we1h0/zhaoweiho.github.io
Weiho's Blog
Language:CSS1 11