shanfenglan's repositories
bruteforce_cs_pwd
暴力破解cs的teamserver密码脚本
dynamic_encode_shellcode
动态加解密shellcode并上线
apache_log4j_poc
apache log4j poc—— base Maven
Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
nopowershell
c#模拟powershell上线cs代码
bypass_disablefunc_via_LD_PRELOAD
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
CVE-2020-17144
weaponized tool for CVE-2020-17144
CVE-2021-1675
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
CVE-2021-40444
CVE-2021-40444 PoC
EfsPotato
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
fake_online
发送心跳包来欺骗cs服务端
HiveNightmare
Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
JNDIExploit
A malicious LDAP server for JNDI injection attacks
ohmyzsh
🙃 A delightful community-driven (with 2,000+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python, etc), 140+ themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.
ProxyShell
ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)
proxyshell-auto
Automatic ProxyShell Exploit
web_title_scan
A tools used to scan 80 and 443 port's portal title