flypig5211 Goto Github PK
Type: User
Type: User
5.2.0.RC源码
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
A flexible scanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:log4jRCE,向日葵RCE 等等.
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
A tool that can be used by web app pentesters to create a copy of a targeted website with CDN and WAF restrictions disabled.
Tool for Active Directory Certificate Services enumeration and abuse
CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
预警系统
C# and Impacket implementation of CVE-2021-1675/PrintNightmare
WSO2 RCE (CVE-2022-29464) exploit and writeup.
VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039)
CVE-2023-38831 winrar exploit generator
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
泛微ecology OA系统接口存在数据库配置信息泄露漏洞
搜集了市面上绝大部分weblogic解密方式,整理了7种解密weblogic的方法及响应工具。
Decryption-Tools
Recovers passwords from pixelized screenshots
Dirpath_List 目录扫描字典
RCE exploit for dompdf
A shared libraries injection tool.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.