ling's repositories
Blind-XSS-Manager
Never forget where you inject.
Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
VcenterKiller
一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webshell,命令执行或者上传公钥使用SSH免密连接
qsreplace
Accept URLs on stdin, replace all query string values with a user-supplied value
wiki
XS-Leaks Wiki
vim-memo
vim备忘录以及个人学习vim的过程
sliver
Adversary Emulation Framework
blackhat-usa-2022-demos
Demos for the Blackhat USA 2022 talk "Taking Kerberos to the Next Level"
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
RedGuard
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
pxplan
CVE-2022-2022
my-re0-k8s-security
:atom: [WIP] 整理过去的分享,从零开始Kubernetes攻防 🧐
vim-cheat-sheet
A mobile friendly Vim cheat sheet
FuckJsonp-RCE-CVE-2022-26809-SQL-XSS-FuckJsonp
警惕 一种针对红队的新型溯源手段!
awvs14-scan
针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
DidierStevensSuite
Please no pull requests for this repository. Thanks!
payload
个人收集常用的fuzz payload
test
test
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Bitrat-Full-Src
BitRAT CrackedIt is coded in C++ programming language. It is the latest version of the best PC RAT 2022 in the market. It is used by hackers to remotely access their victims. This RAT can handles up to 10k bots at a single time without any kind of lag and low CPU usages. It can bind 5 files up to a time. It is the best pc remote administration tool for 2022. This best remote desktop software 2022 supports all-new browser versions for the password recovery feature. Their password recovery feature is updated every time and recovers passwords from all updated browsers. It is the best RAT tool for 2022.
pamspy
Credentials Dumper for Linux using eBPF
magspoof
A portable device that can spoof/emulate any magnetic stripe, credit card or hotel card "wirelessly", even on standard magstripe (non-NFC/RFID) readers. It can disable Chip&PIN and predict AMEX card numbers with 100% accuracy.
tomcat-jmxproxy-rce-exp
Apache Tomcat JMXProxy RCE
Multi-threaded-access-to-web-pages
为了方便平时写批量脚本而创建的多线程访问网页脚本
All-Defense-Tool
本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
Security-List
If you have any good suggestions or comments during the search process, please feedback some index experience in issues. Thank you for your participation.查阅过程中,如果有什么好的意见或建议,请在Issues反馈,感谢您的参与。