八〇六's repositories
iscsicpl_bypassUAC
UAC bypass for x64 Windows 7 - 11(无弹窗版)
Three-EyedRaven
内网探测工具(Internal network detection tool that not contain any exploit code)
Pentest_MindMap
个人翻译/总结渗透测试思维导图
weakenDefenderPriv
Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.
Windows-ReverseShell
Simple reverse shell to avoid Windows defender and kaspersky detection
CVE-2021-31166
PoC for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely. Although it was defined as remote command execution, it can only cause the system to crash.
html-Absorber
一款可批量提取url或本地html文件中注释、属性及标签内容的工具
checkAVProc
Check if there is any anti-software process in current operating environment
Fortinet-FortiWeb-OS-Command-Injection
An OS command injection vulnerability in FortiWeb's management interface (version 6.3.11 and prior) can allow a remote, authenticated attacker to execute arbitrary commands on the system, via the SAML server configuration page.
WebSourceCodeVerificationScan
The tool is used to match and scan the website directory when the source code is known
metasploit-framework
Metasploit Framework
CallbackHell
PoC (DoS) for CVE-2021-40449 - Win32k Elevation of Privilege Vulnerability (LPE)
Conferences
Conference slides
CVE-2021-37980
PoC CVE-2021-37980 : Inappropriate implementation in Sandbox (windows only)
log4shell
Operational information regarding the vulnerability in the Log4j logging library.
thc-tips-tricks-hacks-cheat-sheet
Various tips & tricks