- 📖 komomon's blog
- 🔭 hacker
- 👩💻 x years of work.
- ⚡ Python / PHP / GO / Powershell.
I enjoy it.
the projects I'm working on
Name: Komomon
Type: User
Bio: Z2O安全攻防
I enjoy it.
the projects I'm working on
2021 hw
2022 护网行动 POC 整理
ARL官方仓库备份项目:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
ATTCK-PenTester-Book
AutoHotkey V2 脚本,自动给Typora代码块添加默认语言,让代码块亮起来
The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法,仅15行代码!
the images of blog
XSS平台 CTF工具 Web安全工具
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
绕过杀软学习的项目
通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
一个全新的敏感文件发现工具
文章爬取Bot😎 爬取微信公众号,知乎,知乎专栏,简书,知否(SegmentFault),掘金,CSDN,V2EX,博客园文章转为 markdown
ctfr修改版 从证书中收集子域名,适用于komo https://github.com/komomon/Komo 。Ctfr modified for komo https://github.com/komomon/Komo
My CVE
2020一些漏洞
CVE-2020-16898 Windows TCP/IP远程代码执行漏洞 EXP&POC
CVE-2020-16898 Windows TCP/IP远程代码执行漏洞 EXP&POC
CVE-2022-30190-follina.py-修改版,可以自定义word模板,方便实战中钓鱼使用。
POC for CVE-2022-39952
CVE-2022-44877 Centos Web Panel 7 Unauthenticated Remote Code Execution
🗽 基于Socket RAW,利用 NTLMSSP 探测 Windows远程主机信息
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具 编译最新版本
emailall修改版,修改部分bug
语雀知识库自动导出为 Markdown 格式
Fastjson姿势技巧集合
fofa_filter_plus-白嫖fofa所有资产
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
F-vuln(全称:Find-Vulnerability)是为了自己工作方便专门编写的一款自动化工具,主要适用于日常安全服务、渗透测试人员和RedTeam红队人员,它集合的功能包括:存活IP探测、开放端口探测、web服务探测、web漏洞扫描、smb爆破、ssh爆破、ftp爆破、mssql爆破等其他数据库爆破工作以及大量web漏洞检测模块。
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.