Ushio's repositories
AuditdPy
Linux服务器命令监控辅助脚本,ElasticSearch + Logstash + Kibana + Redis + Auditd
BaRMIe
Java RMI enumeration and attack tool.
bitcoinbook
Mastering Bitcoin 2nd Edition - Programming the Open Blockchain
BurpUnlimited
This project EXTENDS BurpLoader's license. It is NOT intended to replace BurpLoader.
Cloak
Cloak can backdoor any python script with some tricks.
CSS-Keylogging
Chrome extension and Express server that exploits keylogging abilities of CSS.
CVE-2017-11882
CVE-2017-11882 from https://github.com/embedi/CVE-2017-11882
CVE-2017-13089
CVE-2017-13089
ethereum-bootstrap
Starter kit to ethereum private chain.
fastjson-remote-code-execute-poc
fastjson remote code execute poc 直接用intellij IDEA打开即可 首先编译得到Test.class,然后运行Poc.java
Invoke-SocksProxy
Socks proxy server using powershell.
jumpserver
开源跳板机(堡垒机):认证,授权,审计,自动化运维(Open source springboard machine ( fortress machine ): Authentication, authorization, audit, automated operation and maintenance).http://www.jumpserver.org
KPTI-PoC-Collection
Meltdown/Spectre PoC src collection.
lazykatz
Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software.
Pentest-and-Development-Tips
A collection of pentest and development tips
rootkit
Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64
RTF_11882_0802
PoC for CVE-2018-0802 And CVE-2017-11882
struts-scan
struts2漏洞全版本检测和利用工具
TheFatRat
Thefatrat a massive exploiting tool revealed >> An easy tool to generate backdoor and easy tool to post exploitation attack like browser attack,dll . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .
wpyscan
Wordpress pentest tool (because i don't like ruby)
ysoserial.net
Deserialization payload generator for a variety of .NET formatters