kingz40o Goto Github PK
Type: User
Type: User
InfectPE - Inject custom code into PE file [This project is not maintained anymore]
iOS Security Audit Toolit - A semi-automatic tool for iOS App security audit and iOS reverse engineering
CVE-2017-12149 jboss反序列化 可回显
kernel privilege escalation enumeration and exploitation framework
Ladon一款用于大型网络渗透的多线程插件化综合扫描神器,含端口扫描、服务识别、网络资产、密码爆破、高危漏洞检测以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描。5.5版本内置39个功能模块,通过多种协议以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、数据库等信息,漏洞检测包含MS17010、Weblogic、ActiveMQ、Tomcat、Struts2等,密码爆破11种含数据库(Mysql、Oracle、MSSQL)、FTP、SSH(Linux主机)、VNC、Windows密码(IPC、WMI、SMB)、Weblogic后台、Rar压缩包密码等,Web指纹识别模块可识别75种(Web应用、中间件、脚本类型、页面类型)等,可高度自定义插件POC支持.NET程序集、DLL(C#/Delphi/VC)、PowerShell等语言编写的插件,支持通过配置INI批量调用任意外部程序或命令,EXP生成器可一键生成漏洞POC快速扩展扫描能力。Ladon支持Cobalt Strike插件化扫描快速拓展内网进行横向移动。
Log4j jndi injects the Payload generator
BurpSuite Extension: Log4j RCE Scanner
CVE-2021-44228 log4j2 RCE Burp Suite Passive Scanner,can customize the ceye.io api or other apis,including internal networks
一款无须借助dnslog且完全无害的log4j2反连检测工具,解析RMI和LDAP协议实现,可用于甲方内网自查
HTTPDecrypt
Integrate Magisk root and Google Apps (OpenGApps) into WSA (Windows Subsystem for Android)
X安蜜罐用的一些存在JSonp劫持的API
Nim-based assembly packer and shellcode loader for opsec & profit
使用 Nmap 的 Xml 报告生成 Excel 报告
在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms漏洞扫描|端口扫描|待续..
《内网安全攻防-渗透测试实战指南》一些技术点概括
由信安之路团队成员收集整理的与渗透测试相关的 Github 项目地址,如果你由更好的项目请将项目地址发送到:[email protected]
Python AV evasion tool capable to generate FUD executable even with the most common 32 bit metasploit payload(exe/elf/dmg/apk)
poc from bugscan beebeeto
PoC of CVE/Exploit
Some .ps1 scripts for pentesting
Redis-Attack By Replication (通过主从复制攻击Redis)
A harvest of the Disallowed directories from the robots.txt files of the world's top websites.
获取rsync服务目录 为内网渗透以及大批量rsync验证提供便利
利用Python的Socket端口转发,用于远程维护
Trying to tame the three-headed dog.
云函数代理服务
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.