Helen's starred repositories
RuishuBypass
瑞数 bypass all
evil-mysql-server
evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.
SecurityList
A list for Web Security and Code Audit
woodpecker-framework-release
高危漏洞精准检测与深度利用框架
Active-Directory-Pentest-Notes
个人域渗透学习笔记
FastjsonScan
一个简单的Fastjson反序列化检测burp插件
JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
spoolsystem
Print Spooler Named Pipe Impersonation for Cobalt Strike
showdoc_poc
showdoc_poc
Hunt-Sleeping-Beacons
Aims to identify sleeping beacons
MyShellcodeLoader
免杀与恶意软件开发
AppMessenger
一款适用于以APP病毒分析、APP漏洞挖掘、APP开发、HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、鸿蒙)辅助分析工具
telegram-phone-number-checker
Check if phone numbers are connected to Telegram accounts.
SNETCracker
超级弱口令检查工具是一款Windows平台的弱口令审计工具,支持批量多线程检查,可快速发现弱密码、弱口令账号,密码支持和用户名结合进行检查,大大提高成功率,支持自定义服务端口和字典。
DecryptTools
DecryptTools-综合解密
CVE-2024-3273
D-Link NAS CVE-2024-3273 Exploit Tool
java-memshell-scanner
通过jsp脚本扫描java web Filter/Servlet型内存马
Safety-Prompts
Chinese safety prompts for evaluating and improving the safety of LLMs. 中文安全prompts,用于评估和提升大模型的安全性。
SweetPotato
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019