1135

notes

Security & Development

1135-CobaltStrike-ToolKit

about CobaltStrike

solr_exploit

Apache Solr远程代码执行漏洞(CVE-2019-0193) Exploit

VulSpiderX

本程序在后台持续运行，通过headless chrome获取hackerone最新漏洞，发送邮件给安全人员。

dictionary

user/name/pass/web/file

unomi_exploit

CVE-2020-11975 CVE-2020-13942

Applescript_demos

1135.github.io

awesome-cloud-security

🛡️ Awesome Cloud Security Resources ⚔️

content

The content behind MDN Web Docs

CVE-2020-13935

Exploit for WebSocket Vulnerability in Apache Tomcat

druid

Apache Druid: a high performance real-time analytics database.

evilarc

Create tar/zip archives that can exploit directory traversal vulnerabilities

evilarc3

Create tar/zip archives that can exploit directory traversal vulnerabilities

expressjs.com

FFmpeg

Mirror of https://git.ffmpeg.org/ffmpeg.git

gfwlist

The one and only one gfwlist here

gitlab_RCE

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

gogs

Gogs is a painless self-hosted Git service

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

poc

poc file

red_team_tool_countermeasures

remove-web-limits

通杀大部分网站，可以解除禁止复制、剪切、选择文本、右键菜单的限制。

solcurity

Opinionated security and code quality standard for Solidity smart contracts.

solidity-security-blog

Comprehensive list of known attack vectors and common anti-patterns

ssti-payloads

🎯 Server Side Template Injection Payloads

svg-cheatsheet

A cheatsheet for exploiting server-side SVG processors.

the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

www-community

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.