gaogaostone's repositories
cve-bin-tool
This tool scans for a number of common, vulnerable components (openssl, libpng, libxml2, expat and a few others) to let you know if your system includes common libraries with known vulnerabilities.
pwn-env-init
CTF PWN 做题环境一键搭建脚本
Ghostcat-CNVD-2020-10487
Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)
CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
wpscan
WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.
IdentityServer4
OpenID Connect and OAuth 2.0 Framework for ASP.NET Core
reverse-shell-cheatsheet
🙃 Reverse Shell Cheat Sheet 🙃
rips-scanner
RIPS - A static source code analyser for vulnerabilities in PHP scripts
checkmarx-plugin
This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.
subDomainsBrute
A fast sub domain brute tool for pentesters
solr_rce
Apache Solr RCE via Velocity template
JavaVulnerableLab
Vulnerable Java based Web Application
AWD_CTF_Platform
一个简单的AWD训练平台
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
kekeo
A little toolbox to play with Microsoft Kerberos in C
awd-platform
platform for awd
dirsearch
Web path scanner
Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
sonar-auth-github
GitHub Authentication for SonarQube
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
python-md5-collision
Python library to generate files with the same MD5
LightGBM
A fast, distributed, high performance gradient boosting (GBT, GBDT, GBRT, GBM or MART) framework based on decision tree algorithms, used for ranking, classification and many other machine learning tasks.
sonar-auth-gitlab-plugin
Use GitLab OAuth login in SonarQube login page
secscan-authcheck
越权检测工具
RSA-ATTACK
RSA加密应用常见缺陷的原理与实践
Veil
Veil 3.1.X (Check version info in Veil at runtime)
brook
Brook is a cross-platform(Linux/MacOS/Windows/Android/iOS) proxy/vpn software
avet
AntiVirus Evasion Tool
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose