Funny-Qing's repositories
awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools are belong to their respective owners. I'm just maintaining it.
awesome-privilege-escalation
A curated list of awesome privilege escalation
BlueGate
PoC (DoS + scanner) for CVE-2020-0609 & CVE-2020-0610 - RD Gateway RCE
build-web-application-with-golang
A golang ebook intro how to build a web with golang
commix-testbed
A collection of web pages, vulnerable to command injection flaws.
CrossC2
generate CobaltStrike's cross-platform payload
CVE-2020-0601
PoC for CVE-2020-0601
dotfiles
Dotfiles for all :D
Goohak
Automatically Launch Google Hacking Queries Against A Target Domain
gv.vim
A git commit browser in Vim
hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
HostHunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
lsassy
Extract credentials from lsass remotely
Middleware-Vulnerability-detection
CMS、中间件漏洞检测利用合集 Since 2019-9-15
NoXss
Faster xss scanner,support reflected-xss and dom-xss
php-version-audit
Audit your PHP version for known CVEs and patches
phpweb
phpweb 前台任意文件上传
PowerShellArsenal
A PowerShell Module Dedicated to Reverse Engineering
privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
pyKerbrute
Use python to perform Kerberos pre-auth bruteforcing
Red_Team
Some scripts useful for red team activities
SharpAllTheThings
The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
Sublist3r
Fast subdomains enumeration tool for penetration testers
tishna
Complete Automated pentest framework for Web Firewals, Servers, Application Layer to Web Security
vim-which-key
:tulip: Vim plugin that shows keybindings in popup
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
x-crack
x-crack - Weak password scanner, Support: FTP/SSH/SNMP/MSSQL/MYSQL/PostGreSQL/REDIS/ElasticSearch/MONGODB
Xiaomi_Mi_WiFi_R3G_Vulnerability_POC
A login bypass(CVE-2019-18371) and a command injection vulnerability(CVE-2019-18370) in Xiaomi Router R3G up to version 2.28.23.
zsh-completions
Additional completion definitions for Zsh.