zcj2333

zcj2333's Stars

• bigbroke/CVE-2021-21985

  Multiple vulnerabilities in the vSphere Client (HTML5) were privately reported to VMware. Updates and workarounds are available to address these vulnerabilities in affected VMware products.

  1

• chriskaliX/AD-Pentest-Notes

  用于记录内网渗透(域渗透)学习 :-)

  1.1k113

• wyzxxz/xzscanner

  自动化资产收集，端口扫描，指纹识别，蜜罐识别，漏洞检测 轻量级神器

  33

• uknowsec/CreateService

  创建服务持久化

  Language:C++10527

• he1m4n6a/dcweb

  三方依赖库扫描系统

  Language:Python8915

• zhzyker/vulmap

  Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

  Language:Python3.5k572

• sf197/GetPwd

  用CSharp写的一款信息搜集工具，目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密

  Language:C#24433

• ffffffff0x/1earn

  ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

  Language:C++5.5k1.2k

• Maskhe/javasec

  自己学习java安全的一些总结，主要是安全审计相关

  1.6k209

• bewhale/thinkphp_gui_tools

  ThinkPHP漏洞综合利用工具, 图形化界面, 命令执行, 一键getshell, 批量检测, 日志遍历, session包含,宝塔绕过

  Language:PHP709101

• atdpa4sw0rd/Search-Tools

  聚合空间测绘搜索（Fofa,Zoomeye,Quake,Shodan,Censys,BinaryEdge）

  Language:Python34068

• wgpsec/tig

  Threat Intelligence Gathering 威胁情报收集，旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率。

  Language:Python847138

• bit4woo/Summit_PPT

  各种安全大会PPT PDF

  Language:Ruby930283

• uknowsec/Fofa-gui

  Fofa采集工具-自修改版本

  27338

• 1n7erface/PocList

  Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection/QiZhiBaoLeiJi-AnyUserLogin/QiAnXin-WangKangFirewall-RCE/金山-V8-终端安全系统/NCCloud-SQLinjection/ShowDoc-RCE

  Language:Java1.1k318

• knownsec/404StarLink

  404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

  9.1k852

• knownsec/404StarLink-Project

  Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink)

  83157

• Airboi/bypass-av-note

  免杀技术大杂烩---乱拳也打不死老师傅

  1.1k181

• ffffffff0x/Dork-Admin

  盘点近年来的数据泄露、供应链污染事件

  1.9k217

• moonD4rk/HackBrowserData

  Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

  Language:Go12.1k1.6k

• 7dog7/bottleneckOsmosis

  瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf

  Language:Python71288

• lijiejie/BBScan

  A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers

  Language:Python2.2k581

• zongdeiqianxing/Autoscanner

  输入域名>爆破子域名>扫描子域名端口>发现扫描web服务>集成报告的全流程全自动扫描器。集成oneforall、masscan、nmap、dirsearch、crawlergo、xray等工具，另支持cdn识别、网页截图、站点定位；动态识别域名并添加功能、工具超时中断等

  Language:Python800111

• r0eXpeR/RedTeamAttack

  关于红队方面的一些工具\资料\Checklist

  22039

• r0eXpeR/Safety-checklist

  🌴一些安全备忘清单

  6115

• EdgeSecurityTeam/EHole

  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具

  Language:Go3.2k411

• r0eXpeR/redteam_vul

  红队作战中比较常遇到的一些重点系统漏洞整理。

  2.5k466

• knownsec/shellcodeloader

  shellcodeloader

  Language:C++1.7k369

• r0eXpeR/GetInfo

  关于信息收集的一些记录

  13119

• zema1/ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  Language:Java35553