yyxxzz's repositories
PocCollect
a plenty of poc based on python
2023Hvv
2023 HVV情报速递~
AngelSword
Python3编写的CMS漏洞检测框架
Awesome-POC
一个漏洞POC知识库
clash_for_windows
Fndroid/clash_for_windows_pkg/releases 最后备份文件
cobra
Source Code Security Audit (源代码安全审计)
ctf-framework
Hence
data-analysis
资料分享
F-Scrack
https://github.com/y1ng1996/F-Scrack
F-Scrack-1
一款python编写的轻量级弱口令检测脚本,目前支持以下服务:FTP、MYSQL、MSSQL、MONGODB、REDIS、TELNET、ELASTICSEARCH、POSTGRESQL。
insight
洞察-宜信集应用系统资产管理、漏洞全生命周期管理、安全知识库管理三位一体的平台。
LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering.
oxml_xxe
A tool for embedding XXE/XML exploits into different filetypes
poc
poc from bugscan beebeeto
shiro_rce
shiro rce 反序列 命令执行 一键工具
shiro_rce_exp
Shiro RCE (Padding Oracle Attack)
struts-scan
struts2漏洞全版本检测和利用工具
vulscan
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Vxscan
python3写的综合扫描工具,主要用来敏感文件探测(目录扫描与js泄露接口),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,弱口令探测,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
w9scan
一款兼容bugscan插件的扫描器
weakpass-1
Weakpass rule-based online generator to create a wordlist based on a set of words entered by the user.
webshell
This is a webshell open source project
webshell-sample
收集自网络各处的 webshell 样本,用于测试 webshell 扫描器检测率。