Redis(<=5.0.5) RCE

Real-time dashboard for monitoring global news, markets, and geopolitical events

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞…

螢幕側錄系統

老六圖資研析中心

PCAP Hunter is an AI threat hunting workbench. It uses Zeek and Tshark to analyze PCAPs, enriched by OSINT. Features include a world map, JA3 forensics, and C2 detection. It generates multi-languag…

CVE-2022-0847

CVE-2021-4034简单优化，以应对没有安装gcc和make的目标环境

Tools, utilities and scripts to help you write redis modules!

【Hello CTF】题目配套，免费开源的CTF入门教程，针对0基础新手编写，同时兼顾信息差的填补，对各阶段的CTFer都友好的开源教程，致力于CTF和网络安全的开源生态！

A terminal workspace with batteries included

Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles

Next generation web scanner

关于红队方面的学习资料

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

有想法筆記

Compiled Binaries for Ghostpack

从零学习Webshell免杀手册

A guide to learn bash

金刚狼：首款支持AI渗透的WebShell MCP，首款支持多层内网级联的ASPX、ASHX高级WebShell管理工具，AES加密通信，无需代理，内存加载渗透工具，无文件落地隐蔽渗透目标，动态代码执行，ShellCode加载(Metasploit/Cobalt Strike)，反弹Shell，Socks代理，内存马

牛屎虾 一款基于AI的远程主机管理工具

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

A tool to dump a git repository from a website

.git 泄漏利用工具，可还原历史版本

Username tools for penetration testing

A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam