Frank 's repositories
Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
apache-log4j-poc
Apache Log4j 远程代码执行
app-env-docker
基于 Docker 的真实应用测试环境
cloud-native-security-book
《云原生安全:攻防实践与体系构建》资料仓库
CVE-2021-44228-PoC-log4j-bypass-words
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - A trick to bypass words blocking patches
ecapture
capture SSL/TLS text content without CA cert by eBPF.
ExploitPcapCollection
collect some exploit traffic pcap
FastjsonPoc
fastjson漏洞POC代码
java-memshell-scanner
通过jsp脚本扫描java web Filter/Servlet型内存马
log4j-fuzz-head-poc
批量检测log4j漏洞,主要还是批量fuzzz 头
Log4J-RCE-Proof-Of-Concept
Log4j-RCE (CVE-2021-44228) Proof of Concept with additional information
Log4j2-CVE-2021-44228
Remote Code Injection In Log4j
log4j2-without-jndi
log4j2-core JAR w/o JndiLookup.class
log4j2_burp_scan
log4j2 被动 burp rce扫描工具 get post cookie 全参数识别
Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
Log4j_RCE_Tool
Log4j 多线程批量检测利用工具
log4j_vuln
log4j漏洞靶场docker-compose
Log4ShellScanner
Scans and catches callbacks of systems that are impacted by Log4J Log4Shell vulnerability across specific headers.
nessus
nessus crack for docker
pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
scan4all
Vulnerabilities Scan: 15000+PoCs; 20 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty...
sliver
Adversary Emulation Framework
SXF_aTrust_sandbox_bypass
深信服零信任沙箱逃逸( 正常功能,所以我也不打算再提交CNVD, 给使用这款产品的用户介绍下功能效果)
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Windows-INCIDENT-RESPONSE-COOKBOOK
Windows 应急响应手册
xray_crack
xray高级版本破解通用启动器
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
ZhouYu
(周瑜)Java - SpringBoot 持久化 WebShell 学习demo(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)