k1d0ne Goto Github PK
Name: kid
Type: User
Company: Chamd5
Bio: 6
Location: China
Name: kid
Type: User
Company: Chamd5
Bio: 6
Location: China
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
把msf生成的安卓远控附加进普通的app中,并进行加固隐藏特征。可以绕过常见的手机安全管家。
本软件首先集成危害性较大前台rce(无需登录,或者登录绕过执行rce)。反序列化(利用链简单)。上传getshell。sql注入等高危漏洞直接就可以拿权限出数据。其次对一些构造复杂exp漏洞进行检测。傻瓜式导入url即可实现批量测试,能一键getshell检测绝不sql注入或者不是只检测。其中thinkphp 集成所有rce Exp Struts2漏洞集成了shack2 和k8 漏洞利用工具所有Exp并对他们的exp进行优化和修复此工具的所集成漏洞全部是基于平时实战中所得到的经验从而写入到工具里。例如:通达oA一键getshell实战测试 struts2一键getshell 等等
二进制安全相关的学习笔记,感谢滴水逆向的所有老师辛苦教学。
Firmware Analysis Tool
kill anti-malware protected processes (BYOVD)
Chromium Cookie import / export tool
陆续补充一些自己写的cobaltstrike插件
C or BOF file to extract WebKit master key to decrypt user cookie
红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
CobaltStrike 4.x通用白嫖及汉化加载器
.NET C# Tools
CTFs as you need them
大麦网自动购票, 支持docker一键部署。https://t.me/+2EELgNTYiMYxMTFl
图形化漏洞利用Demo-JavaFX版
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Go语言实例教程从入门到进阶,包括基础库使用、设计模式、面试易错点、工具类、对接第三方等
Official Go implementation of the Ethereum protocol
Ethereum Golang API
HVNC for Cobalt Strike
关于学习java安全的一些知识,正在学习中ing,欢迎fork and star
一款支持高度自定义的 Java 内存马生成工具
A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
Metasploit Framework
Fileless Command Execution for Lateral Movement in Nim
在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
各种开源CMS 各种版本的漏洞以及EXP 该项目将不断更新
Python爬虫代理IP池(proxy pool)
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.