fishso

fishso's repositories

Spring4Shell-POC-1

Spring4Shell Proof Of Concept/Information CVE-2022-22965

Language:Python100

1earn

暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Language:C++000

Apt_t00ls

高危漏洞利用工具

000

burpgpt

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

Apache-2.0000

BurpSuite

Burp Suite loader version --> ∞

GPL-3.0000

Burpy

A plugin that allows you execute python and get return to BurpSuite.

MIT000

BypassPathTraversal

000

cn.wankkoree.xposed.enablewebviewdebugging

启用 WebView 调试[旧](Enable WebView Debugging[old])

Language:Kotlin000

com.coderstory.toolkit

CorePatch / 核心破解

000

CustomContextMenu

自定义Windows系统右键菜单工具

Language:Python000

CVE-2022-22965

Vulnerabilidad RCE en Spring Framework vía Data Binding on JDK 9+

000

EasyProtector

一行代码检测XP/调试/多开/模拟器/root

Language:JavaApache-2.0000

HaE

HaE - Highlighter and Extractor, 赋能白帽高效作战

Apache-2.0000

jade-db

"他山之石、可以攻玉"：复旦白泽智能发布面向国内开源和国外商用大模型的Demo数据集JADE-DB

000

LeakValue

Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()

Language:Java000

magisk_overlayfs

Make system partition become read-write (it is also possible without Magisk)

000

MyHooker

搜集平时学习工作中常用的frida脚本

Language:JavaScript000

MyTools

渗透测试脚本, by Tr0e.

Language:Python000

pinduoduo_backdoor

拼多多apk内嵌提权代码，及动态下发dex分析

000

pinduoduo_backdoor_unpacker

Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo

Language:Java000

QingScan

一个漏洞扫描器粘合剂,添加目标后30款工具自动调用；支持 web扫描、系统扫描、子域名收集、目录扫描、主机扫描、主机发现、组件识别、URL爬虫、XRAY扫描、AWVS自动扫描、POC批量验证，SSH批量测试、vulmap。

Language:PythonGPL-3.0000

rag_for_beginners

000

secguide

面向开发人员梳理的代码安全指南

NOASSERTION000

Spring-CVE

This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spring-webflux RCE termed "SpringShell".

CC0-1.0000