l0vecoffee's repositories
Pwn
Advanced exploits that I wrote for Pwn2Own competitions and other occasions
secgpt
secgpt网络安全大模型
Proxy-Attackchain
Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)
sh4d0wup
Signing-key abuse and update exploitation framework
Information_Security_Books
信息安全方面的书籍书籍
FlavorTown
Various ways to execute shellcode
Awesome-CobaltStrike
cobaltstrike的相关资源汇总 / List of Awesome CobaltStrike Resources
PoC-CVE-2022-26809
PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
Java_agent_without_file
Java agent without file 无文件的Java agent
owa_info
获取Exchange信息的小工具
dotnet-deserialization
dotnet 反序列化学习笔记
Disclosures
Zero-day and N-day security vulnerability notes, analysis, and proof-of-concepts
passmaker
可以自定义规则的密码字典生成器,支持图形界面 A password-generator that base on the rules that you specified
JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
WindowsExploitationResources
Resources for Windows exploit development
iMonitor
iMonitor(冰镜 - 终端行为分析系统)
nfstream
NFStream: a Flexible Network Data Analysis Framework.
Slides
A collection of slides from Singular Security Lab.
kt
Kernel file/process/object tool
SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
webrtc-book-cn
中文翻译 《 Real-Time Communication with WebRTC 》
KasperskyHook
Hook system calls on Windows by using Kaspersky's hypervisor
threadx
Azure RTOS ThreadX is an advanced real-time operating system (RTOS) designed specifically for deeply embedded applications.
ghidra_scripts
Port of devttyS0's IDA plugins to the Ghidra plugin framework, new plugins as well.
Voyager
一个安全工具集合平台,用来提高甲方安全人员对自己企业内部进行安全检查,请勿用于非法项目
icebox
Virtual Machine Introspection, Tracing & Debugging