0x24bin's repositories
nagios-weixin
nagios 微信告警
2022-HW-POC
2022 护网行动 POC 整理
Antenna
Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式,将不同漏洞场景检测能力通过插件的形式进行集合,通过与目标进行out-bind的数据通信方式进行辅助检测。
Apt_t00ls
高危漏洞利用工具
BehinderClientSource
冰蝎客户端源码-V4.0.2
bug-bounty-tools
A BASH Script to automate the installation of the most popular bug bounty tools
CVE-2022-26135
CVE-2022-26135
cve-2022-33891
Apache Spark Shell Command Injection Vulnerability
CVE-2022-33980-Apache-Commons-Configuration-RCE
CVE-2022-33980 Apache Commons Configuration 远程命令执行漏洞
CVE-Master
收集本人自接触渗透测试用于漏洞验证的所有热门CVE、POC、CNVD攻击有效载荷+测试工具+FUZZ,一个仓库满足许多攻击测试场景,开箱即用.
DogCs4.4
cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
DroidSSLUnpinning
Android certificate pinning disable tools
EasyPen
EasyPen is a GUI program which helps pentesters do information gathering, vulnerability scan and exploitation
FastjsonScan
Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
GeoLite2
MaxMind's GeoLite2 Country, City, and ASN databases in csv and mmdb.
GetWindowsCredentials
通过WindowsAPI获取用户凭证,并保存到文件中
gorequest
This Project is made for spoofing Ja3 and Akamai fingerprint, it is also very simple to use. I made it noob-friendly as possiable.
Il2CppHookScripts
基于 frida 的 libil2cpp.so 运行时解析脚本
ItChat
A complete and graceful API for Wechat. 微信个人号接口、微信机器人及命令行微信,三十行即可自定义个人号机器人。
jira-mobile-ssrf-exploit
Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
pyrequests
A network testing library based on socket development
scan4all
Vulnerabilities Scan;15000+PoC漏洞扫描;20种应用密码爆破;7000+Web指纹;146种协议90000+规则Port扫描;Fuzz、HW打点、BugBounty神器...
toshiki-geolitedb
🍫 Automatically relrease MaxMind's GeoIP2 GeoLite2 Country, City, and ASN databases via GitHub action's automation curl download process and release for easy access!
vulPOC
vulPOC 用于记录本人复现过的漏洞 poc
wechatbot-1
为个人微信接入ChatGPT