Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit

【三万字原创】完全零基础从0到1掌握Java内存马，公众号：追梦信安

三角洲行动补货抢钥匙卡助手

Exploit for CVE-2025-30406

https://mp.weixin.qq.com/s/7xlMenU4AKWVsT5uHuIW9g 的C++实现

PicX images hosting repository

腾讯反作弊ACE扫盘进程限制工具

【两万字原创】零基础学fastjson漏洞（基础篇），公众号：追梦信安

exploit for f5-big-ip RCE cve-2023-46747

ScreenConnect AuthBypass(cve-2024-1709) --> RCE!!!

Exploiting XXE Vulnerabilities on Microsoft SharePoint Server and Cloud via Confused URL Parsing

CVE-2024-21683 Confluence Post Auth RCE

Time Based SQL Injection in Zabbix Server Audit Log --> RCE

GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)

CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.

CVE-2024-3400-RCE

golang实现通过dcerpc和ntlmssp获取Windows远程主机信息

weblogic批量打入内存马，electron+vue3+springboot实现。

CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4

A script for installing and switching multiple java versions on Linux x86_64, suitable for code audit workers.

针对多个框架的高度自定义的内存马一键打入工具 | A highly customized memory shell one-click injection tool for multiple frameworks

【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安

exploit for cve-2023-47246 SysAid RCE (shell upload)

Classify the yaml scripts in nuclei-templates according to the vulnerability severity and year and export them to html or json(api).