whizsail
不要不要,收到收到
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
Pinned Repositories
-v1.0
冰蝎v1.0
0day
各种开源CMS 各种版本的漏洞以及EXP 该项目将不断更新
2021_Hvv
2021 hw
Blog
Bug-Bounty-Toolz
BBT - Bug Bounty Tools
domainTools
内网域渗透小工具
Fastjson
Fastjson姿势技巧集合
jdwp-codeifier-plancopy
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)
JNDI
JNDI 注入利用工具
PhishMailer
Generate Professional Phishing Emails Fast And Easy
whizsail's Repositories
whizsail/Blog
whizsail/jdwp-codeifier-plancopy
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)
whizsail/ActiveDirectoryAttackTool
ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Controller. This tool is intended to be utilized using a set of known credentials against the host.
whizsail/apkleaks
Scanning APK file for URIs, endpoints & secrets.
whizsail/Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
whizsail/CallMeWin32kDriver
Load your driver like win32k.sys
whizsail/Cloud-Bucket-Leak-Detection-Tools
六大云存储,泄露利用检测工具留存
whizsail/CVE-2022-2333fork
SXF VPN RCE
whizsail/CVE-2022-32119
CVE-2022-32119 - Arox-Unrestricted-File-Upload
whizsail/Fork-Custom-BloodHound-Queries
whizsail/GPUSleep
Move CS beacon to GPU memory when sleeping
whizsail/HackerGPT
The official HackerGPT repository
whizsail/idea-ja-netfilter
A javaagent framework
whizsail/InlineWhispers2
Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2
whizsail/JNDIExploit-1
一款用于 JNDI注入 利用的工具,大量参考/引用了 Rogue JNDI 项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。(from https://github.com/feihong-cs/JNDIExploit)
whizsail/log4jscanner
whizsail/LOLBAS-1
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
whizsail/nginx_shitpost
Nginx 0-day on latest nginx
whizsail/Nidhogg-fork
Nidhogg is an all-in-one simple to use rootkit for red teams.
whizsail/ownrules
use
whizsail/pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
whizsail/ProfSvcLPE
whizsail/RFSec-ToolKit
RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集,可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith
whizsail/safeline
长亭科技自研,基于业界领先的语义引擎检测技术,打造的简洁、易用的免费 WAF
whizsail/ShiroMemShell
如何从Shiro反序列化到注入内存马以及解决请求头过大问题
whizsail/SXF_aTrust_sandbox_bypassfork
深信服零信任沙箱逃逸( 正常功能,所以我也不打算再提交CNVD, 给使用这款产品的用户介绍下功能效果)
whizsail/Visual-Studio-BOF-template
A Visual Studio template used to create Cobalt Strike BOFs
whizsail/Vuln-List-fork
(持续更新)对网上出现的各种OA、中间件、CMS等漏洞进行整理,主要包括漏洞介绍、漏洞影响版本以及漏洞POC/EXP等,并且会持续更新。
whizsail/wsMemShell
websocket cmd内存马 wscmd.jsp websocket 代理内存马 wsproxy.jsp
whizsail/ysoserial-1
ysoserial for su18