ssjt21's repositories
prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
spring-core-rce
CVE-2022-22965 : about spring core rce
ACAF
Auto Code Audit Framework for Java
CVE-2021-41349
Exploiting: CVE-2021-41349
CVE-2021-44521
Automated PoC of CVE-2021-44521
cve-2022-21882-poc
lpe poc for cve-2022-21882
docker-compose-lamp
A basic LAMP stack environment built using Docker Compose.
ffuf
Fast web fuzzer written in Go
FindShell
内存马查杀工具,尤其针对Agent型,原理是dump出JVM当前的class并进行字节码分析,并加入自动修复的功能
FireKylin
🔥火麒麟-网络安全应急响应工具(系统痕迹采集)Cybersecurity emergency response tool.
gdbaselineParsetool
electron ui
H
H是一款强大的资产收集管理平台
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
JSPKiller
基于污点分析的JSP Webshell检测工具,模拟JVM的栈帧操作进行数据流分析,可以检测出各种变形的JSP Webshell
log4jScan_Modify
对接JNDIMonitor的Burp Suite被动扫描插件
netspy
netspy是一款快速探测内网可达网段工具
pocassist
全新的开源漏洞测试框架,实现poc在线编辑、运行、批量测试。使用文档:
Research
Zero-day and Exploit code of some applications
routersploit
Exploitation Framework for Embedded Devices
scaninfo
fast scan for redtools
SnowShadow
雪影,一款桌面软件,集成了IP查询,端口扫描,系统命令,Webshell,C段存活扫描,后台目录扫描,远程控制等功能,以后还会增加其它实用功能。
todesk-silently
Todesk静默运行补丁
zip-tools
zip slip