shi han wang's repositories
BloodHound
Six Degrees of Domain Admin
CORScanner
Fast CORS misconfiguration vulnerabilities scanner
CVE-2017-8759
CVE-2017-8759
CVE-2018-2893
CVE-2018-2893 PoC
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
JavaTimeAgent
fix time for java application using javaAgent
My-CTF-Web-Challenges
Collection of CTF Web challenges I made
Pandoras-Box
This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I get time.
proxychains
proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" for SOCKS4/5, "basic" for HTTP.
RAU_crypto
Hard-coded encryption key remote file upload exploit for CVE-2017-11317, CVE-2017-11357 (Telerik UI for ASP.NET AJAX)
Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
theftfuzzer
TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
upload-labs
一个帮你总结所有类型的上传漏洞的靶场
wooyun_articles
drops.wooyun.org 乌云Drops文章备份