xcxmiku

xcxmiku's Stars

• xtaci/kcptun

  A Quantum-Safe Secure Tunnel based on QPP, KCP, FEC, and N:M multiplexing.

  Language:Go14k5758912.5k

• wy876/POC

  收集整理漏洞EXP/POC,大部分漏洞来源网络，目前收集整理了1400多个poc/exp，长期更新。

  4.6k19714970

• francoismichel/ssh3

  SSH3: faster and rich secure shell using HTTP/3, checkout our article here: https://arxiv.org/abs/2312.08396 and our Internet-Draft: https://datatracker.ietf.org/doc/draft-michel-ssh3/

  Language:Go3.3k326284

• httptoolkit/frida-interception-and-unpinning

  Frida scripts to directly MitM all HTTPS traffic from a target mobile application

  Language:JavaScript1.2k23112205

• cseroad/Webshell_Generate

  用于生成各类免杀webshell

  1.1k1522101

• shuanx/BurpAPIFinder

  攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。

  Language:Java1.1k121767

• dark-kingA/cloudTools

  云资产管理工具 目前工具定位是云安全相关工具，目前是两个模块 云存储工具、云服务工具， 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理，查看、执行命令、接管等等

  934142864

• frkngksl/Shoggoth

  Shoggoth: Asmjit Based Polymorphic Encryptor

  Language:C++69413689

• 20142995/Goby

  Language:Python5752311139

• wgpsec/lc

  LC（List Cloud）是一个多云攻击面资产梳理工具

  Language:Go5557147

• yqcs/prismx

  :: Prism X · Automated Enterprise Network Security Risk Detection and Vulnerability Scanning Tool / 棱镜 X · 自动化企业网络安全风险检测、漏洞扫描工具

  Language:Go50771555

• Neo-Maoku/SearchAvailableExe

  寻找可利用的白文件

  Language:C++4743664

• lintstar/CS-AutoPostChain

  基于 OPSEC 的 CobaltStrike 后渗透自动化链

  4118141

• Meowmycks/LetMeowIn

  A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

  Language:C++38210565

• sma11new/Pyke-Shiro

  复杂请求下的Shiro反序列化利用工具

  Language:Java3214926

• yutianqaq/AVEvasionCraftOnline

  An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

  Language:Go32162454

• hakaioffsec/CVE-2024-21338

  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

  Language:C2883360

• p1d3er/port_reuse

  golang 实现的windows and linux 端口复用工具。

  Language:Go2743339

• honmashironeko/sqlmap-gui

  基于官版本 SQLMAP 进行人工汉化，并提供GUI界面及多个自动化脚本

  Language:Python2523421

• xf555er/AntiAntiVirusNotes

  学习免杀的笔记

  2435155

• EHfive/einat-ebpf

  An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux

  Language:Rust19541813

• vvb2060/zygisk_cacerts

  Language:C++1493122

• TryGOTry/AutoGeaconC2

  AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike

  Language:Go138347

• luelueking/kkFileView-v4.3.0-RCE-POC

  Language:Python831417

• yanghaoi/lib_mysqludf_sys

  a 'pentest' udf plugin of MySQL.

  Language:C34209

• W01fh4cker/DceRPC-OS-Info

  golang实现通过dcerpc和ntlmssp获取Windows远程主机信息

  Language:Go27304

• raise-isayan/YaguraExtender

  Burpsuite extension. Supports CJK (Chinese, Japanese, Korean) encoding.

  Language:Java24263

• cyal1/PyBurp

  PyBurp Allows you to modify Burp Suite proxy requests and responses with simple Python code, supports remote invocation of encryption and decryption methods in browsers or apps, greatly facilitating security professionals in performing security testing on encrypted HTTP request and response transactions.

  Language:Java23227

• luanoliveira350/GameOverlayFS

  GameoverlayFS (CVE-2023-2640 and CVE-2023-32629) exploit in Shell Script tested on Ubuntu 20.04 Kernel 5.4.0

  Language:Shell13115

• zzzal/MySQL_UDF_ShellcodeLoader

  Language:C310