CodingLi

CodingLi

2 followers · 0 following

rust-shellcode Public
Forked from b1nhack/rust-shellcode

windows-rs shellcode loaders

Rust MIT License Updated Jul 11, 2024
venom-rs Public
Forked from memN0ps/venom-rs

Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)

Rust MIT License Updated Mar 2, 2024
jar-analyzer Public
Forked from jar-analyzer/jar-analyzer

Jar Analyzer - 一个JAR包分析工具，批量分析搜索，方法调用关系搜索，字符串搜索，Spring分析，CFG分析，JVM Stack Frame分析，远程分析Tomcat，自定义SQL查询

Java MIT License Updated Jan 18, 2024
fuzzDicts Public
Forked from TheKingOfDuck/fuzzDicts

Web Pentesting Fuzz 字典,一个就够了。

Python Updated Nov 13, 2023
ajp_test Public

Python Updated Oct 31, 2023
jclasslib Public
Forked from ingokegel/jclasslib

jclasslib bytecode editor is a tool that visualizes all aspects of compiled Java class files and the contained bytecode.

Kotlin Other Updated Oct 19, 2023
sliver Public
Forked from BishopFox/sliver

Adversary Emulation Framework

Go GNU General Public License v3.0 Updated Oct 9, 2023
Deserial_Sink_With_JDBC Public
Forked from luelueking/Deserial_Sink_With_JDBC

Some ReadObject Sink With JDBC

Java Updated Sep 4, 2023
corax-community Public
Forked from Feysh-Group/corax-community

corax community version

Kotlin Other Updated Sep 2, 2023
dnSpy Public
Forked from dnSpyEx/dnSpy

Unofficial revival of the well known .NET debugger and assembly editor, dnSpy

C# GNU General Public License v3.0 Updated Aug 8, 2023
Pentest_Note Public
Forked from xiaoy-sec/Pentest_Note

渗透测试常规操作记录

Updated May 22, 2023
Ladon Public
Forked from k8gege/Ladon

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。10.10.5内置228个功能模块,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI…

PowerShell MIT License Updated May 21, 2023
vulhub Public
Forked from vulhub/vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Dockerfile MIT License Updated May 19, 2023
CVE-2023-27524 Public
Forked from horizon3ai/CVE-2023-27524

Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset

Python Apache License 2.0 Updated Apr 25, 2023
jazzer Public
Forked from CodeIntelligenceTesting/jazzer

Coverage-guided, in-process fuzzing for the JVM

Java Apache License 2.0 Updated Mar 8, 2023
heapdump_tool Public
Forked from dioos886/heapdump_tool

通过通过jhat解析heapdump文件，从而实现heapdump敏感信息搜索。

Updated Feb 7, 2023
DongTai-agent-java Public
Forked from HXSecurity/DongTai-agent-java

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

Java Apache License 2.0 Updated Jan 14, 2023
Tai-e Public
Forked from pascal-lab/Tai-e

An easy-to-learn/use static analysis framework for Java

Java GNU Lesser General Public License v3.0 Updated Dec 18, 2022
GTFOBins.github.io Public
Forked from GTFOBins/GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

HTML GNU General Public License v3.0 Updated Dec 10, 2022
scalpel Public
Forked from StarCrossPortal/scalpel

scalpel是一款命令行漏洞扫描工具，支持深度参数注入，拥有一个强大的数据解析和变异算法，可以将常见的数据格式（json, xml, form等）解析为树结构，然后根据poc中的规则，对树进行变异，包括对叶子节点和树结构的变异。变异完成之后，将树结构还原为原始的数据格式。原理：https://mp.weixin.qq.com/s/U_llBwC05vb84U9wb8NZog

Updated Nov 28, 2022
peb_walk_rs Public
Forked from d0ntrash/peb_walk_rs

Dynamically resolve and invoke Windows APIs using Rust. This might help to avoid suspicious imports and the usage of GetProcAddress.

Rust Updated Oct 4, 2022
caidao-official-version Public
Forked from raddyfiy/caidao-official-version

中国菜刀官方版本，拒绝黑吃黑，来路清晰

Updated Sep 16, 2022
vulfocus Public
Forked from fofapro/vulfocus

🚀Vulfocus 是一个漏洞集成平台，将漏洞环境 docker 镜像，放入即可使用，开箱即用。

Vue Apache License 2.0 Updated Sep 3, 2022
CVE-2022-27925 Public
Forked from Josexv1/CVE-2022-27925

Zimbra CVE-2022-27925 PoC

Python MIT License Updated Aug 20, 2022
Aggressor Public
Forked from k8gege/Aggressor

Ladon 911 for Cobalt Strike & Cracked Download,Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/…

Updated Jul 28, 2022
javaweb-vuln Public
Forked from javaweb-rasp/javaweb-vuln

RASP测试靶场

JavaScript Updated Jun 27, 2022
penetration-suite-toolkit Public
Forked from makoto56/penetration-suite-toolkit

本项目制作的初衷是帮助渗透新手快速搭建工作环境，工欲善其事，必先利其器。

Updated May 26, 2022
find-sec-bugs Public
Forked from find-sec-bugs/find-sec-bugs

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Java GNU Lesser General Public License v3.0 Updated May 16, 2022
Netgear-ssl-vpn-20211222-CVE-2022-29383 Public
Forked from badboycxcc/Netgear-ssl-vpn-20211222-CVE-2022-29383

Updated May 14, 2022
ByteCodeDL Public
Forked from BytecodeDL/ByteCodeDL

A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

Shell GNU General Public License v3.0 Updated May 1, 2022

CodingLi

rust-shellcode Public

Uh oh!

venom-rs Public

Uh oh!

jar-analyzer Public

Uh oh!

fuzzDicts Public

Uh oh!

ajp_test Public

Uh oh!

jclasslib Public

Uh oh!

sliver Public

Uh oh!

Deserial_Sink_With_JDBC Public

Uh oh!

corax-community Public

Uh oh!

dnSpy Public

Uh oh!

Pentest_Note Public

Uh oh!

Ladon Public

Uh oh!

vulhub Public

Uh oh!

CVE-2023-27524 Public

Uh oh!

jazzer Public

Uh oh!

heapdump_tool Public

Uh oh!

DongTai-agent-java Public

Uh oh!

Tai-e Public

Uh oh!

GTFOBins.github.io Public

Uh oh!

scalpel Public

Uh oh!

peb_walk_rs Public

Uh oh!

caidao-official-version Public

Uh oh!

vulfocus Public

Uh oh!

CVE-2022-27925 Public

Uh oh!

Aggressor Public

Uh oh!

javaweb-vuln Public

Uh oh!

penetration-suite-toolkit Public

Uh oh!

find-sec-bugs Public

Uh oh!

Netgear-ssl-vpn-20211222-CVE-2022-29383 Public

Uh oh!

ByteCodeDL Public

Uh oh!