heyzm's Projects
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
A fast TCP tunnel over HTTP
CobaltStrike's source code
📧Coremail邮件系统组织通讯录导出脚本
创建服务持久化
check cs yara rules
Cuckoo Sandbox is an automated dynamic malware analysis system
dump
Scanner PoC for CVE-2019-0708 RDP RCE vuln
EoP POC for CVE-2019-1132
CVE-2019-1388 UAC提权 (nt authority\system)
CVE-2019-2725 命令回显
PoC for CVE-2019-5736
2020一些漏洞
Exploit for WebSocket Vulnerability in Apache Tomcat
Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()
WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar
CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
Exchange2010 authorized RCE
Weblogic coherence.jar RCE
Citrix ADC Vulns
CVE-2021-22555 Exploit
PoC for CVE-2021-3156 (sudo heap overflow)
CVE-2021-4034 1day
windows 10 14393 LPE
A root exploit for CVE-2022-0847 (Dirty Pipe)
编程开发相关书籍整理分享,持续更新...
大灰狼远控木马 V9.5 源码
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)