0x24bin's repositories
nagios-weixin
nagios 微信告警
accelerator
使用Golang批量分析Java的class文件以辅助挖洞
ARL-plus-docker
基于斗象灯塔ARL修改后的版本。相比原版,增加了OneForAll、**数据库,修改了altDns
CVE-2022-26135
CVE-2022-26135
CVE-2022-32532
Apache Shiro CVE-2022-32532
cve-2022-33891
Apache Spark Shell Command Injection Vulnerability
CVE-2022-33980-Apache-Commons-Configuration-RCE
CVE-2022-33980 Apache Commons Configuration 远程命令执行漏洞
damit5.github.io
个人部分知识总结
EDR-Bypass-demo
Some demos to bypass EDRs or AVs by 78itsT3@m
FridaAntiRootDetection
A frida script for bypass common root detection,the collection of detection methods is still improving!
heartsk_community
Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描
jira-mobile-ssrf-exploit
Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
linux-exploit-suggester
Linux privilege escalation auditing tool
log4j2Scan-2
用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
pyrequests
A network testing library based on socket development
RedTeamNotes
红队笔记
RouteVulScan
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
SXF_aTrust_sandbox_bypass
深信服零信任沙箱逃逸( 正常功能,所以我也不打算再提交CNVD, 给使用这款产品的用户介绍下功能效果)
tomcat-jmxproxy-rce-exp
Apache Tomcat JMXProxy RCE
toshiki-geolitedb
🍫 Automatically relrease MaxMind's GeoIP2 GeoLite2 Country, City, and ASN databases via GitHub action's automation curl download process and release for easy access!
UnpackShellScripts
总结大佬们的脱壳脚本
webprobe
一款快速探测web存活并获取title的工具
ysoserial
ysoserial for su18