werwolfz Goto Github PK
Name: zzzz
Type: User
Name: zzzz
Type: User
渗透资料
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
a php serialize/unseralize tools fork from ambionics/phpggc, add chinese common php framework
Exploit for CVE-2019-11043
Demo-ing CVE-2017-1000253 in a container
拼多多apk内嵌提权代码,及动态下发dex分析
Information about Kubernetes CVE-2020-8558, including proof of concept exploit.
PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.
PoC or Exp Of Vulnerability
Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection/QiZhiBaoLeiJi-AnyUserLogin/QiAnXin-WangKangFirewall-RCE/金山-V8-终端安全系统/NCCloud-SQLinjection/ShowDoc-RCE
poc
Privilege escalation with polkit - CVE-2021-3560
一款不需要买代理来减少扫网站目录被封概率的扫描器,适用于中小规格字典。
PowerTools is a collection of PowerShell projects with a focus on offensive operations.
A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
python安全和代码审计相关资料收集 resource collection of python security and code review
Dump various types of Windows credentials without injecting in any process.
安卓应用层抓包通杀脚本
Redis-Attack By Replication (通过主从复制攻击Redis)
Automated DLL Enumerator
Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)
信息收集
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
红队笔记
NTLM relay test.
Java RMI Vulnerability Scanner
安卓APP安全测试所列资源
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.