Light

netcatprprpr photo

whizsail Goto Github PK

followers: 31.0 following: 418.0 repos: 403.0 gists: 0.0

Name: netcatprprpr

Type: User

Company: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Bio: 不要不要，收到收到

Location: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

Blog: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

netcatprprpr's Projects

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

atools

attackwebframeworktools

本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。上传getshell。sql注入等高危漏洞直接就可以拿权限出数据。其次对一些构造复杂exp漏洞进行检测。傻瓜式导入url即可实现批量测试,能一键getshell检测绝不sql注入或者不是只检测。其中thinkphp 集成所有rce Exp Struts2漏洞集成了shack2 和k8 漏洞利用工具所有Exp并对他们的exp进行优化和修复此工具的所集成漏洞全部是基于平时实战中所得到的经验从而写入到工具里。例如:通达oA一键getshell实战测试 struts2一键getshell 等等

audit-learning

记录自己对《代码审计》的理解和总结，对危险函数的深入分析以及在p牛的博客和代码审计圈的收获

automatic-api-attack-tool

Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.

av_evasion_tool

掩日 - 免杀执行器生成工具

avlist

avList - 杀软进程对应杀软名称

awesome-advanced-windows-exploitation-references

List of Awesome Advanced Windows Exploitation References

awesome-cobaltstrike

cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources

awesome-cobaltstrike-defence

Defences against Cobalt Strike

awesome-hacking-lists

平常看到好的渗透hacking工具和多领域效率工具的集合

awesome-malware-analysis

Defund the Police.

awesome-red-teaming

List of Awesome Red Teaming Resources

awesome-windows-red-team

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

awesome_shiro

CVE-2016-4437-Shiro反序列化爆破模块和key,命令执行，反弹shell的脚本

badcode

恶意代码逃逸源代码 http://payloads.online

bbscan

A fast vulnerability scanner

behinder_source

冰蝎的源码（Decompile & Fixed）

bilibili-evolved

强大的哔哩哔哩增强脚本: 下载视频, 音乐, 封面, 弹幕 / 简化直播间, 评论区, 首页 / 自定义顶栏, 删除广告, 夜间模式 / 触屏设备支持

blind-ssrf-chains

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

blog

blog-1

个人博客，希望大佬们提issue

bof_collection

Various Cobalt Strike BOFs

bottleneckosmosis

瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf

brim

Desktop application to efficiently search large packet captures and Zeek logs.

bro-pdns

Passive DNS collection using Bro

browserghost

这是一个抓取浏览器密码的工具，后续会添加更多功能

bufferfly

攻防演习/渗透测试资产处理小工具，对攻防演习/渗透测试前的信息搜集到的大批量资产/域名进行存活检测、获取标题头、语料提取、常见web端口检测等。

bug-bounty-toolz

BBT - Bug Bounty Tools

burpcrypto

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).

1
2
3
4
5
6
7
8
9
10
11
12
13
14

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.