SuperZero's repositories
CVE-2023-33246
Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
Awesome-Redteam
一个攻防知识仓库
cloudflare-docker-proxy
A docker registry proxy run on cloudflare worker.
CVE-2021-1675
Impacket implementation of CVE-2021-1675
CVE-2021-30551
my exp for chrome V8 CVE-2021-30551
CVE-2022-39197
CobaltStrike <= 4.7.1 RCE
CVE-2023-24055_PoC
CVE-2023-24055 PoC (KeePass 2.5x)
CVE-2024-23897
CVE-2024-23897 - Jenkins 任意文件读取 利用工具
FingerprintHub
侦查守卫(ObserverWard)的指纹库
GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
PoC
Proofs-of-concept
SBSCAN
SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive information/unauthorized for specified sites and scan and validate spring related vulnerabilities]
Scan-Spring-GO
针对SpringBoot的渗透工具,Spring漏洞利用工具
sshdHooker
注入SSHD进程并记录ssh登录的密码
The-Site-Reliability-Workbook-CHS
The Site Reliability Workbook 站点可靠性工作手册 中文版
truffleHog
Searches through git repositories for high entropy strings and secrets, digging deep into commit history