feisec's repositories
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
aclAuditor
Audit your acl of network device
AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
As-Exploits
**蚁剑后渗透框架
cmd.jsp
A super small jsp webshell with file upload capabilities.
CobaltStrike
CobaltStrike's source code
CVE-2021-26855
CVE-2021-26855 exp
CVE-2021-3156-plus
CVE-2021-3156非交互式执行命令
EgGateWayGetShell_py
EgGateWayGetShell py脚本
ffuf
Fast web fuzzer written in Go
Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
JavaSecInterview
打造最强的Java安全研究与安全开发面试题库,包含问题和详细的答案,帮助师傅们找到满意的工作
JSFinder
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
JspMaster-Deprecated
一款基于webshell命令执行功能实现的GUI webshell管理工具,支持流量加密
Kumo
:mouse: A lightweight remote administration tool written in Java
mm-wiki
MM-Wiki 一个轻量级的企业知识分享与团队协同软件,可用于快速构建企业 Wiki 和团队知识分享平台。部署方便,使用简单,帮助团队构建一个信息共享、文档管理的协作环境。
Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
remote-method-guesser
Tool for Java RMI enumeration and bruteforce of remote methods
SecExample
JAVA 漏洞靶场 (Vulnerability Environment For Java)
SharpView
C# implementation of harmj0y's PowerView
shellcodeloader
shellcodeloader
shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
Shiro_Xray
CommonsBeanutils1,CommonsCollectionsK1
WebLogic-Shiro-shell
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell
weblogic_exploit
weblogic漏洞利用工具
yakit
Cyber Security ALL-IN-ONE Platform
ZhouYu
(周瑜)Java - SpringBoot 持久化 WebShell