fuhei Goto Github PK

2021_hvv

2021 hw

a8-oa-seeyon-rce

A Zhiyuan OA Collaborative Office Remote Code Execution Vulnerability on Windows

antsword

AntSword is a cross-platform website management toolkit.

arsenal

Arsenal is just a quick inventory and launcher for hacking programs

awd-platform

platform for awd

bayonet

bayonet是一款src资产管理系统，从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统

bypass_disable_functions_shell

一个各种方式突破Disable_functions达到命令执行的shell

bypass_disablefunc_via_ld_preload

bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)

caringcaribou

A friendly car security exploration tool for the CAN bus

cf

云环境利用框架（Cloud exploitation framework）主要用来方便红队人员在获得 AK 的后续工作。

ciscn2018-template

国赛分站赛命题模板

cnvd-c-2019-48814

CNVD-C-2019-48814 Weblogic wls9_async_response 反序列化利用工具

ctf

My ctf games

ctf-writeups

cve-2014-0160

cve-2014-0160

cve-2016-5195

CVE-2016-5195 (dirtycow/dirtyc0w) proof of concept for Android

cve-2018-8581

CVE-2018-8581 | Microsoft Exchange Server Elevation of Privilege Vulnerability

cve-2022-0847

CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”

dc010

som dc010

doser.py

DoS tool for HTTP requests (inspired by hulk but has more functionalities)

emqx-operator

A Kubernetes Operator for EMQX

eternalblue-doublepulsar-metasploit

fbctf-2019-challenges

The challenge source code and solutions for FBCTF 2019

get_cve

python抓取最新的cve漏洞url地址

goby

hackhttp

Hackhttp is an HTTP library, written in Python.

heartbleed_dockerfile_with_nginx

hooker

🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service和其他任意对象。

huxiang_2019_pwn_hacknote

HuXiang_2019_pwn_HackNote

image