八〇六's Projects
PoC (DoS) for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)
Cloud Exploitation Framework 云环境利用框架,方便安全人员在获得 AK 的后续工作
Check if there is any anti-software process in current operating environment
Code written in the course of work
Conference slides
PoC for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely. Although it was defined as remote command execution, it can only cause the system to crash.
PoC CVE-2021-37980 : Inappropriate implementation in Sandbox (windows only)
Implement load Cobalt Strike & Metasploit&Sliver shellcode with golang
An OS command injection vulnerability in FortiWeb's management interface (version 6.3.11 and prior) can allow a remote, authenticated attacker to execute arbitrary commands on the system, via the SAML server configuration page.
一款可批量提取url或本地html文件中注释、属性及标签内容的工具
Under Windows NT, icon files
UAC bypass for x64 Windows 7 - 11(无弹窗版)
Operational information regarding the vulnerability in the Log4j logging library.
Metasploit Framework
个人翻译/总结渗透测试思维导图
Various tips & tricks
内网探测工具(Internal network detection tool that not contain any exploit code)
多啦A梦的百宝箱:gift:
Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.
The tool is used to match and scan the website directory when the source code is known
Simple reverse shell to avoid Windows defender and kaspersky detection