trailblazer001's repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
2022-HW-POC
2022 护网行动 POC 整理
404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms漏洞利用工具,爆破工具、内网横向及免杀、社工钓鱼以及应急响应等资料。
Awesome-Redteam
一个红队知识仓库
cf
Cloud Exploitation Framework 云环境利用框架,方便安全人员在获得 AK 的后续工作
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CVE-2022-30190-follina-Office-MSDT-Fixed
CVE-2022-30190-follina.py-修改版,可以自定义word模板,方便实战中钓鱼使用。
CVE-2022-39197
CobaltStrike <= 4.7.1 RCE
CVE-2023-21839
Weblogic CVE-2023-21839 / CVE-2023-21931 / CVE-2023-21979 一键检测
follina.py
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
gitrob
Reconnaissance tool for GitHub organizations
h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
hackerone-reports
Top disclosed reports from HackerOne
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以整理出来希望跟小伙伴们一起更新维护~
IOT_Articles_Collection
Some IOT Integration of Technical Articles
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
navgix
navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
PeiQi-WIKI-Book
面向网络安全从业者的知识文库🍃
poc-hub
漏洞检测、漏洞利用
Python-100-Days
Python - 100天从新手到大师
Spring-Core-RCE
Spring Core RCE
spring-spel-0day-poc
spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP
spring4shell-scan
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
springcore-0day-en
Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.
tianyancha_py
天眼查脚本
TomcatMemShell
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马,支持注入CMD内存马和冰蝎内存马
ysoserial-1
ysoserial for su18