whwlsfb

BurpCrypto

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

JDumpSpider

HeapDump敏感信息提取工具

Log4j2Scan

Log4j2 RCE Passive Scanner plugin for BurpSuite

cve-2022-22947-godzilla-memshell

CVE-2022-22947 注入Godzilla内存马

ViewState-Cracker

ASP.net ViewState密钥被动扫描爆破BurpSuite插件

SpringSpider

Spring Actuator端点的BurpSuite被动扫描插件。

pty_bind_shell

Pty bind shell for golang 一款基于SSH协议的远控程序

SwaggerHelper

用于启动本地保存的api-docs.json文档。

CryptoWatcher

一个简单的虚拟货币盯盘程序，行情数据来源于火币交易所。

agentcrack

不那么一样的 Java Agent 内存马

goby_poc

goby poc or exp,分享goby最新网络安全漏洞检测或利用代码

HLSpider

基于Scrapy的页面敏感词检测工具

jar-analyzer

Jar Analyzer - 一个JAR包分析工具，批量分析搜索，方法调用关系搜索，字符串搜索，Spring分析，CFG分析，JVM Stack Frame分析等众多功能

onedev

Super Easy All-In-One DevOps Platform

revsuit

RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.

viewgen

Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys

clash

A rule-based tunnel in Go.

linux

Linux kernel source tree

MS-SharePoint-July-Patch-RCE-PoC

nas-tools

A fork of NAStool/nas-tools:2.9.1

no-defender

A slightly more fun way to disable windows defender + firewall. (through the WSC api)

openwrt-tailscale

LuCI support for tailscale

prism

nof1.ai 复刻

stable-diffusion-webui

Stable Diffusion web UI

sunlogin_rce_

某日葵远程rce

TcpServerChannelRce

一款基于James Forshaw的.NET Remoting反序列化工具升级版在TypeFilterLevel.Low模式无文件payload任意代码执行poc的开发心得

vmprotect-3.5.1

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

woodpecker-requests

woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。

xray

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档