Kernux's repositories
Apt_t00ls
高危漏洞利用工具
blackjump
JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
electron_shell
Developing a more covert Remote Access Trojan (RAT) tool by leveraging Electron's features for command injection and combining it with remote control methods.
FilelessPELoader
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
forticrack
Decrypt encrypted Fortienet FortiOS firmware images
golib
Golang packages used in frp and fft.
HackerMind
各种安全相关思维导图整理收集。渗透步骤,web安全,CTF,业务安全,人工智能,区块链安全,数据安全,安全开发,无线安全,社会工程学,二进制安全,移动安全,红蓝对抗,运维安全,风控安全,linux安全
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Havoc
The Havoc Framework.
legba
A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷
OA-EXPTOOL
OA综合利用工具,集合将近20款OA漏洞批量扫描
ofrak
OFRAK: unpack, modify, and repack binaries.
pyGPOAbuse
Partial python implementation of SharpGPOAbuse
SecMind
安全导图
secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
shells
Script for generating revshells
sRDI
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
sshdHooker
一键注入SSHD进程记录并发送ssh登录的密码
Terminator
Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
TongdaScan_go
通达OA漏洞检测工具-TongdaScan_go
traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
WPS-0DAY-20230809
WPS-Office 1-Click RCE exp 202308091824