Hzllaga's repositories
ShellcodeLoader
将shellcode用rsa加密并动态编译exe,自带几种反沙箱技术。
BT_Panel_Privilege_Escalation
宝塔面板Windows版提权方法
RDODecrypt
Remote Desktop Organizer 密码破解
EcShop_RCE_Scanner
一款轻量级的扫描工具
FileZilla_Privilege_Escalation
FileZilla Server Interface 加账户脚本
FridaHookSysAPI
System level encryption algorithm Hook from Frida
upload-fuzz-dic-builder
上传漏洞fuzz字典生成脚本
GTFOBins.github.io
Curated list of Unix binaries that can be exploited to bypass system security restrictions
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
JNDI-Exploit-Kit
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)
JNDIExploit-1
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
MaliciousMacroGenerator
Malicious Macro Generator
onlinetools
在线cms识别|旁站|c段|信息泄露|工控|系统|物联网安全|cms漏洞扫描|nmap端口扫描|子域名获取|待续..
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
qqgroup-visualization
QQ群关系可视化查询3D力导向图
Scanners-Box
A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Symlink-Directory-Traversal-smb-manually
SAMBA Symlink Directory Traversal Manual Exploitation