Jx0n's starred repositories
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
TheRoadOfSO
学习安全运营的记录 | The knowledge base of security operation
useful-code
useful-code
WindowsMDM-LPE-0Day
CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day
vcenter_saml_login
A tool to extract the IdP cert from vCenter backups and log in as Administrator
SpringBootExploit
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。
ShiroAttack2
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
monstra_cms-3.0.4--getshell
monstra_cms-3.0.4-上传getshell CVE-2018-17418
Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
trojan-qt5
我並非原作者。
Bypass_Disable_functions_Shell
一个各种方式突破Disable_functions达到命令执行的shell
PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
Cooolis-ms
Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的代码,帮助红队人员更方便快捷的从Web容器环境切换到C2环境进一步进行工作。
Pentest_Note
渗透测试常规操作记录
ReiAyanami
这是一个快速内网端口扫描的项目
bypass-av-note
免杀技术大杂烩---乱拳也打不死老师傅