U21H2's starred repositories
CloakQuest3r
Uncover the true IP address of websites safeguarded by Cloudflare & Others
sam-the-admin
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
BounceBack
↕️🤫 Stealth redirector for your red team operation security
agentcrack
不那么一样的 Java Agent 内存马
TsojanScan
An integrated BurpSuite vulnerability detection plug-in.
TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
gpt_academic
为GPT/GLM等LLM大语言模型提供实用化交互接口,特别优化论文阅读/润色/写作体验,模块化设计,支持自定义快捷按钮&函数插件,支持Python和C++等项目剖析&自译解功能,PDF/LaTex论文翻译&总结功能,支持并行问询多种LLM模型,支持chatglm3等本地模型。接入通义千问, deepseekcoder, 讯飞星火, 文心一言, llama2, rwkv, claude2, moss等。
MetabaseRceTools
CVE-2023-38646 Metabase RCE
Log4j2-CVE-2021-44228
Remote Code Injection In Log4j
VcenterKit
Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
WPeChatGPT
A plugin for IDA that can help to analyze binary file, it can be based on models such as gpt-3.5 turbo, gpt-4 trained by OpenAI, the same as ChatGPT.
Auto_proxy
利用IP地址池进行自动切换Http代理,防止IP封禁。
ClassHound
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
java-memshell-generator
一款支持自定义的 Java 内存马生成工具|A customizable Java in-memory webshell generation tool.
cve-2019-1003000-jenkins-rce-poc
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)