Beast code in Giters

Geidalaodicha's starred repositories

cve-2019-19781

This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.

Language:PythonNOASSERTION57100

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Language:HTMLApache-2.0640500

Neo-reGeorg

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

Language:JavaGPL-3.0277500

aliyun-accesskey-Tools

阿里云accesskey利用工具

Language:Python109900

Search-Tools

聚合空间测绘搜索（Fofa,Zoomeye,Quake,Shodan,Censys,BinaryEdge）

Language:PythonMIT33600

beian_miit_spider

一个工业和信息化部ICP备案查询的爬虫

Language:PythonGPL-2.09900

jiraffe

One stop place for exploiting Jira instances in your proximity

Language:PythonMIT18300

cDomain

利用天眼查查询企业备案

Language:Go17000

chip

a simple tool to detect potential security threat in php code

Language:PHP30700

JavaLearnVulnerability

Java漏洞学习笔记 Deserialization Vulnerability

Language:HTML89700

PowerUpSQL

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Language:PowerShellNOASSERTION239100

devtools

⚙️ Browser devtools extension for debugging Vue.js applications.

Language:TypeScriptMIT2454200

xxer

A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.

Language:PythonMIT51000

MySQL_Fake_Server

MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize

Language:Python117400

CDK

📦 Make security testing of K8s, Docker, and Containerd easier.

Language:GoApache-2.0377400

SharpRDP

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

Language:C#BSD-3-Clause97600

odat

ODAT: Oracle Database Attacking Tool

Language:Python158600

shiro-exploit

Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload

Language:Python85800

DefaultCreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Language:PythonMIT544100

burp-api-drops

burp插件开发指南

Language:JavaApache-2.057500

ShiroScan

burp插件 ShiroScan 主要用于框架、无dnslog key检测

Language:JavaApache-2.033600

BurpSuite-collections

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

Language:HTMLMIT319800

HackBar

HackBar plugin for Burpsuite

Language:JavaMIT149500

MDUT

MDUT - Multiple Database Utilization Tools

Language:JavaAGPL-3.0187900

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Language:JavaMIT34900

fscan

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

Language:GoMIT922400

reGeorg-Weblogic

reGeorg的特殊版本，适用于老版本weblogic。

Language:Python15300

EHole

EHole(棱洞)-红队重点攻击系统指纹探测工具

46800

Packer-Fuzzer

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Language:PythonGPL-3.0272600

Geidalaodicha