东方有鱼名为咸's repositories
Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
BurpSuite-collections
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
BLACKHAT_Asia2023
Black Hat Asia 2023 PDF Public
BLACKHAT_USA2022
BLACKHAT USA2022 PDF Public
HCMendetool
HCM宏景加解密工具
CVE-2022-40127
Apache Airflow < 2.4.0 DAG example_bash_operator RCE POC
burpsuite_pro_for_mac
A script to easily activate the macOS version of Burp Suite Professional [Free]
CVE-2022-24086
CVE-2022-24086 about Magento RCE
ShellcodeLoader
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
CVE-2023-28432
CVE-2023-28434 nuclei templates
thinkphp_lang_RCE
about thinkphp lang RCE QVD-2022-46174 v6.0.1 <= Thinkphp <= v6.0.13 Thinkphp v5.0.x Thinkphp v5.1.x
CVE-2023-23333
SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates
cve_monitor
Automatic monitor github cve using Github Actions
NanoPi-R4S
基于 Lean&Lienol 源码的 NanoPi R4S 的 OpenWrt 固件(添加 CPU 风扇控制,适用于 r2s 和 r4s)
CNVD_Modify
适用于CNVD的篡改猴(Tampermonkey、Greasemonkey)脚本
CVE-2022-3328
CVE-2022-3328 with CVE-2022-41974 and CVE-2022-41973
modify_freebuf_pic
支持t00ls.com文章图片放大&去除 freebuf.com 的文章部分的图片末尾追加的 !small ,让图片直接显示最佳尺寸而不是缩小版的,不需要点击放大查看,方便查看文章。
Gofreeproxy
自用的动态代理小工具
hysteria_mac.sh
hysteria shell script for Mac
mr-xn.github.io
github page
turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
JspEncounter
JSP下的白魔法:JspEncounter。适用于JSP webshell bypass AV/免杀
nanopi-openwrt
Openwrt for Nanopi R1S R2S R4S R5S 香橙派 R1 Plus 固件编译 纯净版与大杂烩
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.