半九十's repositories
AssetsHarvester
一个从网络空间测绘引擎搜索信息资产的系统(tool to harvest information from Cyberspace Surveying and Mapping System)
Uuid-shellcodeloader
reference: https://mp.weixin.qq.com/s/1DvYNDiZc2iV1pXEn7GZEA
winAPI_AddUser
使用winapi添加用户至用户组
chromeNday
chrome rce利用脚本,采用go编写
mumu0215.github.io
blog for half90
ServiceUnAuthorized
读取mumu0215/FlamiePaw项目中输出的json格式的service文件,对开放的服务进行未授权和简单弱口令检测
cve_monitor
using db to process cve/cnvd info
CVE_repaly
漏洞复现过程
EHole
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
goGetQuakeInfo
go program using quake api
golimitDemo
有协程控制地实现并发请求
Landray-OA-Treexml-Rce
蓝凌OA远程代码执行漏洞批量检查
Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
mp-unpack
基于electron-vue开发的跨平台微信小程序自助解包(反编译)客户端
PeiQi-WIKI-POC
鹿不在侧,鲸不予游🐋
picForhexo
pic for hexo
Poc-Monitor
🔍 Github CVE POC 信息监控推送 🚀
privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
ProxyVulns
[ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-31207 Exploit Chains.
SaiDict
弱口令,敏感目录,敏感文件等渗透测试常用攻击字典
SuperWordlist
基于实战沉淀下的各种弱口令字典
uselessScript
some daliy scripts which are useless
vulnstack_learn
vulnstack靶场学习笔记