wg135

0day-security-software-vulnerability-analysis-technology

0day安全_软件漏洞分析技术

CPP

review c++

data-structure

exploit

pentest

script

wg135.github.io

wg135/script

wg135/afl

american fuzzy lop for network fuzzing (unofficial) -- official afl site is http://lcamtuf.coredump.cx/afl/

wg135/AI-Driven-WAF

Artificial intelligence-driven Web Firewall

wg135/awesome-cve-poc

✍️ A curated list of CVE PoCs.

wg135/awesome-windows-exploitation

A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom

wg135/cmsPoc

CMS渗透测试框架-A CMS Exploit Framework

wg135/custom-encoders

This Repository holds a bunch of updated and edited custom encoders found in different books or written by me.

wg135/cve-2016-0189

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

wg135/dnscat2

wg135/expdevBadChars

Bad Characters highlighter for exploit development purposes supporting multiple input formats while comparing.

wg135/exploitdev

wg135/IoT-Firstep

一个物联网(IoT)开发的入门教程。涉及单片机、上位机、移动应用、服务器后台开发的知识。以及蓝牙4.0、以太网模块的使用实例。

wg135/labs

Vulnerability Labs for security analysis

wg135/LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks

wg135/linux-kernel-exploits

linux-kernel-exploits Linux平台提权漏洞集合

wg135/Mind-Map

各种安全相关思维导图整理收集

wg135/peda

PEDA - Python Exploit Development Assistance for GDB

wg135/PowerTools

PowerTools is a collection of PowerShell projects with a focus on offensive operations.

wg135/pub

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

wg135/pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

wg135/pythontool

wg135/RABCDAsm

Robust ABC (ActionScript Bytecode) [Dis-]Assembler

wg135/rest-client

Simple HTTP and REST client for Ruby, inspired by microframework syntax for specifying actions.

wg135/SecLists

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

wg135/Struts2_045-Poc

Struts2-045 POC

wg135/trommel

TROMMEL: Sift Through Directories of Files to Identify Indicators That May Contain Vulnerabilities

wg135/vul_war

《漏洞战争：软件漏洞分析精要》配套资料

wg135/vulhub

Docker-Compose file for vulnerability environment

wg135/webshell

wg135/webshell-1

This is a webshell open source project