heroanswer Goto Github PK
Type: User
Location: 北京
Type: User
Location: 北京
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
A collection of pentest and development tips
Custom pentesting tools
渗透测试常规操作记录
Web Shell Detector – is a php script that helps you find and identify php/cgi(perl)/asp/aspx shells. Web Shell Detector has a “web shells” signature database that helps to identify “web shell” up to 99%.
📡 PoC auto collect from GitHub.
POC&EXP仓库、hvv弹药库、Nday、1day
聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or CVE from Github by CVE ID.
一款跨平台小巧的端口爆破工具,支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD
个人数据泄漏检测网站,适用于 QQ / 京东 / 顺丰 / 微博。
CVE-2022-2022
一款python编写的Web安全检测PoC&&EXP框架
Wiki to collect Red Team infrastructure hardening resources
2019年红队资源链接,资源不是本人整理出来,来自互联网,因为流传的少,特意在此做个备份,做个分享。
A collection of open source and commercial tools that aid in red team operations.
Automated Red Team Infrastructure deployement using Docker
Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.
红队作战中比较常遇到的一些重点系统漏洞整理。
红方人员作战执行手册
记录自己编写、修改的部分工具
日常积累的一些红队工具及自己写的脚本,更偏向于一些diy的好用的工具,并不是一些比较常用的msf/awvs/xray这种
🧯风险控制笔记,适用于互联网企业
通用的指纹识别规则
一个2023届毕业生在毕业前持续更新、收集的安全岗面试题及面试经验分享~
面向开发人员梳理的代码安全指南
This is my FirstRepository
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
Red Team Tool Kit
Sign-Sacker(签名掠夺者):一款数字签名复制器,可将其他官方exe中数字签名,图标,详细信息复制到没有签名的exe中,作为免杀,权限维持,伪装的一种小手段。
用于漏洞排查的pocsuite3验证POC代码
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.