0irebRwE's repositories
Checklists
Pentesting checklists for various engagements
CobaltStrike_Hanization
CobaltStrike 2.5中文汉化版
CTFTraining
CTF Training 经典赛题复现环境
CVE-2017-5123
linux kernel exploit
CVE-2017-5124
Exploit for the linux kernel vulnerability CVE-2017-5123
CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
dnsgen
Generates combination of domain names from the provided input.
embedi-CVE-2017-11882
Proof-of-Concept exploits for CVE-2017-11882
exploit
一个自动化渗透框架
HuntFishingMum
专杀钓鱼网站亲妈
Invoke-PSImage
Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
KPTI-PoC-Collection
Meltdown/Spectre PoC src collection.
mitm6
pwning IPv4 via IPv6
NEKit
A toolkit for Network Extension Framework
php7-opcache-override
Security-related PHP7 OPcache abuse tools and demo
PIL-RCE-By-GhostButt
Exploiting Python PIL Module Command Execution Vulnerability
pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
python-uncompyle6
A Python cross-version decompiler
reCAPTCHA
A burp extender that reconginze CAPTCHA and use for intruder payload
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
struts-scan
Python2编写的struts2漏洞全版本检测和利用工具
unamer-CVE-2017-11883
CVE-2017-11882 Exploit accepts 109 bytes long command in maximum.
uxss-db
🔪 Universal Cross-site Scripting DB [+ other browser vulnerabilities]
vulhub
Docker-Compose file for vulnerability environment
ysoserial.net
Deserialization payload generator for a variety of .NET formatters