miaofu's repositories
AntSword-Loader
AntSword 加载器
Apache_Solr_RCE_via_Velocity_template
Apache_Solr_RCE_via_Velocity_template
Behinder
“冰蝎”动态二进制加密网站管理客户端
BlueKeep
Proof of concept for CVE-2019-0708
CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
CVE-2019-2725
CVE-2019-2725 命令回显
CVE-2020-14750
PoC para las vulnerabilidades CVE-2020-14750 y cve-2020-14882
Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
F-NAScan
Scanning a network asset information script
frp
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Grafana-0day
Grafana 任意文件读取漏洞poc
jadx
Dex to Java decompiler
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
KCon
KCon is a famous Hacker Con powered by Knownsec Team.
lxhToolHTTPDecrypt
HTTPDecrypt for Android Penetration Test
MYSQL_SQL_BYPASS_WIKI
mysql注入,bypass的一些心得
SNETCracker
超级弱口令检查工具是一款Windows平台的弱口令审计工具,支持批量多线程检查,可快速发现弱密码、弱口令账号,密码支持和用户名结合进行检查,大大提高成功率,支持自定义服务端口和字典。
vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
webshell-detect-bypass
绕过专业工具检测的Webshell研究文章和免杀的Webshell
wooyun_public
乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
wxappUnpacker
Wechat App(微信小程序,.wxapkg)解包及相关文件(.wxss,.json,.wxs,.wxml)还原工具
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档