Stars
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Github for the scripts utilised during Penetration test
ksysrqd is a Linux kernel module for calling magic sysrq-keys over TCP/IP. Therefore it runs inside kernel space and is OOM safe. Also can be used as debugging tool or hacking backdoors inside the …
After attackers manage to gain access to a remote (or local) machine and elevate their privileges to "root", they typically want to maintain their access, while hiding their presence from the norma…
JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64
Vulnerability Verification Environment based on Docker
A collection of useful scripts for Cobalt Strike
Writeup of CVE-2017-1002101 with sample "exploit"/escape
A tool to elevate privilege with Windows Tokens
Outline: Access to the free and open Internet
Chrome extension and Express server that exploits keylogging abilities of CSS.
python安全和代码审计相关资料收集 resource collection of python security and code review
Kubernetes Handbook (Kubernetes指南) https://kubernetes.feisky.xyz
GitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
JumpServer is an open-source Privileged Access Management (PAM) platform that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints…
An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
Mastering Bitcoin 3rd Edition - Programming the Open Blockchain
Starter kit to ethereum private chain.
Cloak can backdoor any python script with some tricks.
!!!不建议使用了,可以使用AuditBeat!!! Linux服务器命令监控辅助脚本,ElasticSearch + Logstash + Kibana + Redis + Auditd