cola8888

0

followers

following

stars

Cola's starred repositories

PassTheChallenge

Recovering NTLM hashes from Credential Guard

Language:CMIT32100

LeetLinked

A Google/Bing Scraping tool for LinkedIn

Language:Python9100

CTF-bash-tools

Toolset for automating common management actions used in CTF's

Language:Shell3600

ChatGPT-Next-Web

A cross-platform ChatGPT/Gemini UI (Web / PWA / Linux / Win / MacOS). 一键拥有你自己的跨平台 ChatGPT/Gemini 应用。

Language:TypeScriptMIT7375800

JuicyPotatoNG

Another Windows Local Privilege Escalation from Service Account to System

Language:C++MIT78800

CVE-2022-0847

CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”

Language:Shell27200

dumpall

一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

Language:PythonMIT131600

goblin

一款适用于红蓝对抗中的仿真钓鱼系统

Language:GoGPL-3.0140700

sql-injection-payload-list

🎯 SQL Injection Payload List

MIT467400

Windows_LPE_AFD_CVE-2023-21768

LPE exploit for CVE-2023-21768

FUZZING

Collected fuzzing payloads from different resources

Language:Python9300

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT5897400

BinaryCutting-Tool

二进制文件切割&合并工具

Language:PythonMIT7600

StandIn

StandIn is a small .NET35/45 AD post-exploitation toolkit

Language:C#68000

PrintNotifyPotato

PrintNotifyPotato

Language:C#49200

Priv2Admin

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

Tokenvator

A tool to elevate privilege with Windows Tokens

Language:C#101400

RunasCs

RunasCs - Csharp and open version of windows builtin runas.exe

Language:C#GPL-3.095400

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION1550400

CVE-2021-3156

Sudo Baron Samedit Exploit

Language:PythonBSD-3-Clause72600

CVE-2020-0787

CVE-2020-0787的简单回显

Language:C++3000

ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Language:PythonMIT283000

command-injection-payload-list

🎯 Command Injection Payload List

MIT282000

UACME

Defeating Windows User Account Control

Language:CBSD-2-Clause617700

glibc-all-in-one

🎁A convenient glibc binary and debug file downloader and source code auto builder

Language:ShellMIT59600

iox

Tool for port forwarding & intranet proxy

Language:GoMIT96600

static-binaries

Various *nix tools built as statically-linked binaries

Language:ShellNOASSERTION307200

wesng

Windows Exploit Suggester - Next Generation

Language:PythonBSD-3-Clause408600

Ghostpack-CompiledBinaries

Compiled Binaries for Ghostpack (.NET v4.0)

PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Language:PowerShellNOASSERTION1168200