All

82 repositories

NacosRce
Public
Java
•91•0•0•0•Updated Jul 1, 2023Jul 1, 2023
CVE-2023-32315-Openfire-Bypass
Public
openfire rce
Java
•34•1•0•0•Updated Jun 15, 2023Jun 15, 2023
Weaver_ofslogin_vul
Public
组合利用泛微信息泄漏漏洞和任意用户登录漏洞，可获取全部loginId并测试登录
Python
•9•1•0•0•Updated Jun 2, 2023Jun 2, 2023
SecurityList
Public
A list for Web Security and Code Audit
233•0•0•0•Updated May 18, 2023May 18, 2023
ysoserial-2
Public
ysoserial修改版，着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。
Java
•
MIT License
•120•0•0•0•Updated May 5, 2023May 5, 2023
Awesome-POC2
Public
一个各类漏洞POC知识库
1k•0•0•0•Updated May 4, 2023May 4, 2023
Awesome-POC
Public
一个各类漏洞POC知识库
1k•0•0•0•Updated May 4, 2023May 4, 2023
JNDIExploitnew
Public
Java
•190•0•0•0•Updated Apr 15, 2023Apr 15, 2023
HexDnsEchoT
Public
命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求）
Python
•28•0•0•0•Updated Mar 19, 2023Mar 19, 2023
POChouse
Public
POC&EXP仓库、hvv弹药库、Nday、1day
Python
•275•0•0•0•Updated Nov 11, 2022Nov 11, 2022
evil-mysql-server
Public
evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.
Go
•14•0•0•0•Updated Oct 23, 2022Oct 23, 2022
hack-fastjson-1.2.80
Public
63•0•0•0•Updated Sep 16, 2022Sep 16, 2022
evasion-hub
Public
杀软对抗
JavaScript
•40•0•0•0•Updated Sep 7, 2022Sep 7, 2022
2022-HW-POC
Public
2022 护网行动 POC 整理
Go
•690•0•0•0•Updated Aug 2, 2022Aug 2, 2022
tongdaoa_poc
Public
详见公众号
Python
•15•0•0•0•Updated Jul 23, 2022Jul 23, 2022
wsMemShell
Public
一种全新的内存马
Java
•230•0•0•0•Updated Jun 30, 2022Jun 30, 2022
ShellcodeLoader
Public
该项目为Shellocde加载器，详细介绍了我们如何绕过防病毒软件，以及该工具如何使用
C++
•114•0•0•0•Updated Jun 22, 2022Jun 22, 2022
Penetration_Testing_POC
Public
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql s…
PowerShell
•
Apache License 2.0
•2k•0•0•0•Updated Jun 20, 2022Jun 20, 2022
ysoserial
Public
ysoserial for su18
Java
•208•0•0•0•Updated Jun 19, 2022Jun 19, 2022
tomcat-jmxproxy-rce-exp
Public
Apache Tomcat JMXProxy RCE
Go
•
Apache License 2.0
•37•0•0•0•Updated Jun 13, 2022Jun 13, 2022
Awesome-Redteam
Public
一个红队知识仓库
Python
•720•0•0•0•Updated May 30, 2022May 30, 2022
1earn
Public
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
C++
•1.3k•0•0•0•Updated May 29, 2022May 29, 2022
my-re0-k8s-security
Public
:atom: [WIP] 整理整理过去的分享，从零开始的Kubernetes攻防 ...
Shell
•472•0•0•0•Updated May 22, 2022May 22, 2022
Memoryshell-JavaALL
Public
收集内存马打入方式
47•0•0•0•Updated May 20, 2022May 20, 2022
Pentest101
Public
每周分享一些关于渗透测试的知识点
87•0•0•0•Updated May 15, 2022May 15, 2022
wechat_info_collect
Public
调查取证 | 针对微信客户端的信息收集工具, 自动化提取本地PC所有的微信信息, 包括微信号, 手机号等
Python
•140•0•0•0•Updated May 13, 2022May 13, 2022
TomcatMemShell
Public
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马，支持注入CMD内存马和冰蝎内存马
Java
•76•0•0•0•Updated May 11, 2022May 11, 2022
ev
Public
EV: IDS Evasion via Packet Manipulation
Python
•54•0•0•0•Updated May 10, 2022May 10, 2022
GetDomainAdmin
Public
获取域控权限的几种方式
110•0•0•0•Updated May 7, 2022May 7, 2022
JNDIEXP
Public
JDNI在java高版本的利用工具
Java
•70•0•0•0•Updated Apr 27, 2022Apr 27, 2022

ProTip! When viewing an organization's repositories, you can use the props. filter to filter by custom property.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ffadd

All

All

82 repositories

NacosRce

CVE-2023-32315-Openfire-Bypass

Weaver_ofslogin_vul

SecurityList

ysoserial-2

Awesome-POC2

Awesome-POC

JNDIExploitnew

HexDnsEchoT

POChouse

evil-mysql-server

hack-fastjson-1.2.80

evasion-hub

2022-HW-POC

tongdaoa_poc

wsMemShell

ShellcodeLoader

Penetration_Testing_POC

ysoserial

tomcat-jmxproxy-rce-exp

Awesome-Redteam

1earn

my-re0-k8s-security

Memoryshell-JavaALL

Pentest101

wechat_info_collect

TomcatMemShell

ev

GetDomainAdmin

JNDIEXP

All

All

Repositories list

82 repositories