SaiRson's Projects
Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率,用Go语言完全重构了原Python版本。
netspy是一款快速探测内网可达网段工具
使用windows api添加用户,可用于net无法使用时.分为nim版,c++版本,RDI版,BOF版。
Network vulnerability exploitation library
Idiomatic nmap library for go developers
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
Extendable payload obfuscation and delivery framework
Fast and customizable vulnerability scanner based on simple YAML based DSL.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
集成 nuclei 示例
openam-CVE-2021-35464 tomcat 执行命令回显
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Parameter discovery and fuzzing tool
Converts PE into a shellcode
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
A collection of pentest and development tips
从零开始内网渗透学习
各种数据库的利用姿势
渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker
一个关于PHP的代码审计项目
总结一些php代码审计ctf练习题
ICMP Ping library for Go
Use pingser to create client and server based on ICMP Protocol to send and receive custom message content.
A tool to make socks connections through HTTP agents
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
这个工具只是临时名称,我称他为端口隧道技术,解决隔离内网上线问题。
Course repository for PowerShell for Pentesters Course