Pinned Repositories
0day
各种开源CMS、各种系统的漏洞POC 以及EXP 该项目将不断更新
0day-1
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
0days-in-the-wild
Repository for information about 0-days exploited in-the-wild.
1earn
个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
2021CDN
49shouting
联通挂机任务积分脚本
520apkhook
把msf生成的安卓远控附加进普通的app中,并进行加固隐藏特征。可以绕过常见的手机安全管家。
Micro8
Gitbook
WindowsElevation
Windows Elevation(持续更新)
wuxueeee's Repositories
wuxueeee/atexec-pro
Fileless atexec, no more need for port 445
wuxueeee/Banshee
Experimental Windows x64 Kernel Rootkit.
wuxueeee/btcloud
PHP开发的宝塔面板第三方云端
wuxueeee/CS-AutoPostChain
基于 OPSEC 的 CobaltStrike 后渗透自动化链
wuxueeee/CVE-2024-20931
CVE-2024-20931, this is the bypass of the patch of CVE-2023-21839
wuxueeee/CVE-2024-30088
wuxueeee/DongTai
Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components through passive instrumentation. It is particularly suitable for use in the testing phase of the development pipeline.
wuxueeee/EHole_magic_magic
可以指定状态码和标题以排除不想要的数据,支持从管道符传入参数,根据cms类型来做总结输出
wuxueeee/eop24-26229
A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a privileged user
wuxueeee/frp
基于frp-0.58.1魔改二开,随机化socks5账户密码及端口、钉钉上线下线通知、配置文件oss加密读取、域前置防止溯源、源码替换/编译混淆等
wuxueeee/gitbook
wuxueeee/GoDhijacking
Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response) systems. 红队工具旨在快速识别可劫持程序、逃避防病毒软件和 EDR(端点检测和响应)系统。
wuxueeee/goon
goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含:ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、tomcat等爆破以及如netbios探测等功能。
wuxueeee/grok-1
Grok open release
wuxueeee/HackBrowserData
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
wuxueeee/java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具|A highly customizable Java memory-shell generation tool.
wuxueeee/Jie
Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gathering, and exploitation, elevating it to an indispensable toolkit for both security professionals and penetration testers.(expectations)
wuxueeee/nacos-poc
wuxueeee/Pillager
Pillager是一个适用于后渗透期间的信息收集工具
wuxueeee/POC1
收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了300多个poc/exp,长期更新。
wuxueeee/poc_exp
持续更新poc/exp,后续会加入yaml,敬请关注
wuxueeee/pumpbin
🎃 PumpBin is an Implant Generation Platform.
wuxueeee/SearchAvailableExe
寻找可利用的白文件
wuxueeee/SecGPT
SecGPT网络安全大模型
wuxueeee/shadow-rs
Windows Kernel Rootkit in Rust
wuxueeee/The-Hacker-Recipes
This project is aimed at freely providing technical guides on various hacking topics: Active Directory services, web services, servers, intelligence gathering, physical intrusion, phishing, mobile apps, iot, social engineering, etc.
wuxueeee/web-sec
WEB安全手册(红队安全技能栈),漏洞理解,漏洞利用,代码审计和渗透测试总结。【持续更新】
wuxueeee/WIKI-POC
漏洞库
wuxueeee/yuque-dl
yuque 语雀知识库下载
wuxueeee/yuze
A socksv5 proxy tool Written by CLang. 一款纯C实现的基于socks5协议的轻量内网穿透工具,支持ew的全部数据转发方式,支持跨平台使用