Beast code in Giters

Duo's starred repositories

Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Language:PythonMIT219500

semantic-release

:package::rocket: Fully automated version management and package publishing

Language:JavaScriptMIT2000100

memShell

FilterBased/ServletBased in memory shell for Tomcat and some other middlewares

Language:Java34500

ShiroExploit-Deprecated

Shiro550/Shiro721 一键化利用工具，支持多种回显方式

Language:Java183300

JNDIExploit

对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改

Language:Java139700

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。

Language:JavaMIT21200

Shiro-1.4.1-RCE

Shiro<=1.4.1 padding oracle attack导致RCE

Language:Python500

FavFreak

Making Favicon.ico based Recon Great again !

Language:PythonMIT108000

NetExec

The Network Execution Tool

Language:PythonBSD-2-Clause244700

ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Language:PythonMIT254400

build-your-own-x

Master programming by recreating your favorite technologies from scratch.

27158900

MySQL_Fake_Server

MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize

Language:Python115700

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

Language:HTML816400

autorest

OpenAPI (f.k.a Swagger) Specification code generator. Supports C#, PowerShell, Go, Java, Node.js, TypeScript, Python

Language:TypeScriptMIT451600

semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Language:OCamlLGPL-2.1996200

MassTransit

Distributed Application Framework for .NET

Language:C#Apache-2.0662500

workflow-core

Lightweight workflow engine for .NET Standard

Language:C#MIT516900

heroicons

A set of free MIT-licensed high-quality SVG icons for UI development.

Language:JavaScriptMIT2093200

flowbite

Open-source UI component library and front-end development framework based on Tailwind CSS

Language:HTMLMIT718900

flowbite-admin-dashboard

Free and open-source admin dashboard template built with Tailwind CSS and Flowbite

Language:HTMLMIT174700

Weblogic

WebLogic vulnerability exploration from beginner to expert.

14900

awesome-chatgpt-prompts

This repo includes ChatGPT prompt curation to use ChatGPT better.

Language:HTMLCC0-1.010584900

CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC

CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator

26700

kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

Language:GoApache-2.0673400

CVE-2019-18935

RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.

Language:PythonApache-2.033800

hackingtool

ALL IN ONE Hacking Tool For Hackers

Language:PythonMIT4323300

fuzzuli

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

Language:GoMIT60100

ctf

Ctf solutions from p4 team

Language:Python175300

Web-Cache-Vulnerability-Scanner

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Language:GoNOASSERTION81000

JuicyPotatoNG

Another Windows Local Privilege Escalation from Service Account to System

Language:C++MIT77700