wsfengfan

承接高难度渗透测试和溯源项目 WX:Signboards

Pinned Repositories

7kbscan-RDP-Sniper
一款有图形界面的RDP(3389)口令检测工具
1 1 00
7kbscan-WebPathBrute
7kbscan-WebPathBrute Web路径暴力探测工具
1 1 01
AssetScan
资产探测工具，检测存活，检测风险端口，常规端口，全端口探测等等，对探测的端口的脆弱面进行安全分析进行
Language:Python1 1 00
CVE-2020-10199-10204
CVE-2020-10199 CVE-2020-10204 Python POC
Language:Python19 3 06
cve-2020-14882
CVE-2020-14882 EXP 回显
Language:Python8 2 06
CVE-2020-1947
CVE-2020-1947 Python POC
Language:Python4 2 02
CVE-2020-2555
CVE-2020-2555 Python POC
Language:Java46 2 224
python-hacker
python编写的黑客渗透工具代码，可供于学习和使用
Language:Python51 3 024
SecurityTraceability
网络安全溯源指南 v1.0 （黑客溯源指南）
2 1 02
Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
Language:Python1 1 04

wsfengfan's Repositories

wsfengfan/CVE-2020-2555
CVE-2020-2555 Python POC
Language:Java46 2 224
wsfengfan/CVE-2020-10199-10204
CVE-2020-10199 CVE-2020-10204 Python POC
Language:Python19 3 06
wsfengfan/cve-2020-14882
CVE-2020-14882 EXP 回显
Language:Python8 2 06
wsfengfan/CVE-2020-1947
CVE-2020-1947 Python POC
Language:Python4 2 02
wsfengfan/SecurityTraceability
网络安全溯源指南 v1.0 （黑客溯源指南）
2 1 02
wsfengfan/AssetScan
资产探测工具，检测存活，检测风险端口，常规端口，全端口探测等等，对探测的端口的脆弱面进行安全分析进行
Language:Python1 1 00
wsfengfan/blog
1 2 0
wsfengfan/CVE-2020-0796
CVE-2020-0796 Python POC buffer overflow
1 2 01
wsfengfan/wooyun-payload
从wooyun中提取的payload，以及burp插件
Language:Java1 1 0
wsfengfan/BypassAntiVirus
远控免杀系列
Language:Python1 0
wsfengfan/CVE-2019-19383
FreeFTPd 1.0.8 Post-Authentication Buffer Overflow via SIZE
Language:Python1 0
wsfengfan/CVE-2019-2890
Language:Java1 0
wsfengfan/CVE-2020-14883
CVE-2020–14882 by Jang
Language:Python1 0
wsfengfan/DriedMango
GUI Exploit Tool For RedTeam
1 0
wsfengfan/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
Language:Python1 0
wsfengfan/HandPosing
Pose authoring using handtrackingon Quest
Language:C#1 0
wsfengfan/impacket
Impacket is a collection of Python classes for working with network protocols.
Language:Python1 0
wsfengfan/Information_Collection_Handbook
Handbook of information collection for penetration testing
1 0
wsfengfan/javaweb-sec
攻击Java Web应用-[Java Web安全]
Language:Java1 01
wsfengfan/jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
Language:Python1 01
wsfengfan/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Language:PowerShell1 01
wsfengfan/local-exploits
Various local exploits
Language:Shell1 0
wsfengfan/Pentest-Notes
《内网安全攻防-渗透测试实战指南》一些技术点概括
1 01
wsfengfan/pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Language:Python1 0
wsfengfan/pyKerbrute
Use python to perform Kerberos pre-auth bruteforcing
Language:Python1 0
wsfengfan/ReverseTCPShell
PowerShell ReverseTCP Framework
Language:PowerShell1 0
wsfengfan/snippet
code snippet
1 0
wsfengfan/taowu-cobalt-strike
Language:PowerShell1 0
wsfengfan/tomcat-cluster-session-sync-exp
tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包，可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484是session持久化的洞，这个是session集群同步的洞！
Language:Java1 0
wsfengfan/wsfengfan.github.io
Language:HTML2 0