Y4tacker's repositories
HackingFernFlower
2023白帽补天大会部分代码
CobaltStrike4.7ServerDocker
docker运行cs4.7server端
Web-Security
A repository to record my usual studies
phpfuck-6characters
only 5 characters to rce
CodeqlLearn
记录学习codeql的过程
y4tacker.github.io
my websites
WeblogicEnvironment
Weblogic环境搭建工具
hue-hive-rce
Use Hive to hijack a Hadoop cluster+
Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
SCU-Thesis-LaTeX-Template
四川大学本科、硕士、博士论文LaTeX模版
Spring-Kafka-POC-CVE-2023-34040
POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
Struts2-Vulenv
struts2 漏洞环境源代码
websiteComments
my website Comments
ascii-jar
构造字节在ASCII范围内的jar
ascii-zip
A deflate compressor that emits compressed data that is in the [A-Za-z0-9] ASCII byte range.
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
HackSpring
《Spring漏洞学习》
PaddingZip
PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.
PHP-binary-bugs
PHP binary bugs advisory
ShiroAttack2
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
wsMemShell
websocket cmd内存马 wscmd.jsp websocket 代理内存马 wsproxy.jsp
ysoserial-for-woodpecker
给woodpecker框架量身定制的ysoserial