gamblingmaster2020's repositories
Botgate_bypass
绕过瑞数waf的动态验证机制,实现请求包重放,可针对不同网站使用。
BurpAPIFinder
攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
bypass_bilibili
绕过bilibili apk的反frida机制
cloudflare_temp_email
CloudFlare free temp domain email 免费收发 临时域名邮箱 支持附件 IMAP SMTP
DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
GUI-TOOLS
spring部分漏洞,nacos部分漏洞,禅道认证绕过漏洞
Hikvision-
Hikvision综合漏洞利用工具
JarEditor
IDEA plugin for directly editing classes/resources in Jar without decompression.
java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具
java_utilbox
Java项目常用代码
JavaRce
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
JsRpc
远程调用(rpc)浏览器方法,免去抠代码补环境
No_X_Memory_ShellCode_Loader
无可执行权限加载 ShellCode (点点 Star,非常感谢!) Loading ShellCode without executable permission (Click Star, thank you very much!)
OneLong
简化前期信息收集的繁重任务,协助红队人员快速的信息收集,达到一条龙的效果
p0tools
Project Zero Docs and Tools
PPPYSO
proof-of-concept for generating Java deserialization payload | Proxy MemShell
RuishuBypass
瑞数 bypass all
RustRedOps
🦀 | RustRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Rust programming language.
SeleniumBase
📊 Python's all-in-one framework for web crawling, scraping, testing, and reporting. Supports pytest. UC Mode provides stealth. Includes many tools.
SentinelBruh
Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution
SharpZeroLogon
Reworked version of NCC Group's [SharpZeroLogon](https://github.com/nccgroup/nccfsas/tree/main/Tools/SharpZeroLogon) for .NET Framework 3.5
Shiro1Tools
Tools that were used during the development of the Apache Shiro 1 Hashcat module
ShitReport
渗透测试报告生成工具
TotalSystem
Low Level Windows Library
TXPortMap_new
阅读代码,添加注释,新增功能
WARP-Clash-API
该项目可以让你通过订阅的方式使用Cloudflare WARP+,自动获取流量。This project enables you to use Cloudflare WARP+ through subscription, automatically acquiring traffic.
XPost
A Post Exploitation Tool for High Value Systems
yuque-tools
🧰 玩转语雀-朴实无华的语雀工具集合,语雀知识库+团队资源批量导出/备份工具(无需Token)|浏览器插件助手