foolboy365

cybersecurity_knowledge

AsyncRAT-C-Sharp

Open-Source Remote Administration Tool For Windows C# (RAT)

linux-kernel-exploits

linux-kernel-exploits Linux平台提权漏洞集合

antSword

AntSword is a cross-platform website management toolkit.

CVE-2018-20250

exp for https://research.checkpoint.com/extracting-code-execution-from-winrar

CVE-2021-37580

CVE-2021-41773_CVE-2021-42013

CVE-2021-41773 CVE-2021-42013漏洞批量检测工具

dirsearch

Web path scanner

Emergency-Response-Notes

应急响应实战笔记，一个安全工程师的自我修养。

GScan

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

Intranet_Penetration_Tips

2018年初整理的一些内网渗透TIPS，后面更新的慢，所以公开出来希望跟小伙伴们一起更新维护~

K8tools

K8工具(内网渗透/提权工具/远程溢出/漏洞利用/Exploit/APT/0day/Shellcode/Payload/priviledge/OverFlow/WebShell/PenTest)

luminati-proxy

Luminati HTTP/HTTPS Proxy manager

Micro8

NATBypass

一款lcx在golang下的实现

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pochubs

PocHubs是为了整合网上知名开源框架的漏洞详细和POC

s3-inspector

Tool to check AWS S3 bucket permissions

sec-chart

安全思维导图集合

SSRFmap

Automatic SSRF fuzzer and exploitation tool

SuperWordlist

基于实战沉淀下的各种弱口令字典

testssl.sh

Testing TLS/SSL encryption anywhere on any port

tools

渗透测试相关工具

vulhub

Docker-Compose files for vulnerability environments

vuln_wiki

wafw00f

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

wesng

Windows Exploit Suggester - Next Generation

windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

xss-payload-list

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.