ch4o3 Goto Github PK
Name: ch4O3
Type: User
Company: China
Location: BeiJing
Name: ch4O3
Type: User
Company: China
Location: BeiJing
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
2022 护网行动 POC 整理
一个旨在通过应用场景 / 标签对 Github 红队向工具 / 资源进行分类收集,降低红队技术门槛的手册【持续更新】
改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
自动化攻击评估系统
Armor 浏览器反蜜罐插件
ADB Usage Complete / ADB 用法大全
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
渗透测试打点信息收集与漏洞扫描系统
重生之我是赏金猎人系列,分享自己和团队在SRC、项目实战漏洞测试过程中的有趣案例
攻防演习/渗透测试资产处理小工具,对攻防演习/渗透测试前的信息搜集到的大批量资产/域名进行存活检测、获取标题头、语料提取、常见web端口检测等。
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件
冰蝎Java WebShell自动化免杀生成
CamOver is a camera exploitation tool that allows to disclosure network camera admin password.
该脚本可以进行CDN检测。主要原理是通过爬取站长之家的全球ping来识别CDN,一共选取了35个国内外节点,并且对全国各个省份的节点都进行了选择。同时支持单个域名和多个域名检测。
六大云存储,泄露利用检测工具
云原生安全
通过公司名称,在fofa上搜索可能存在通用产品的公司;如果想挖掘cnvd证书,可导出注册资金大于5000w的公司到这个脚本中进行通用系统收集。
Source Code Security Audit (源代码安全审计)
codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
脚本工具合集GUI版本,内置漏洞验证、利用模块,可自定义脚本实现批量验证。
一款根据关键词批量采集url的小脚本,支持多个关键词批量采集。
红队常用命令速查
Covenant is a collaborative .NET C2 framework for red teamers.
Gather and update all available and newest CVEs with their PoC.
个人部分知识总结
渗透测试情报收集工具
红队字典:默认凭证、弱用户名、弱口令、弱Web路径
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.