ls command with files icons

Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.

PoC CVE-2021-30632 - Out of bounds write in V8

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

PoC demonstrating the use of cve-2020-1034 for privilege escalation

扫描常见未授权访问(改)（redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop）

一款渗透时快速资产探测工具

Vampire is an aggressor script which integrates with BloodHound to mark nodes as owned.

A proof-of-concept scanner to check an RDG Gateway Server for vulnerabilities CVE-2020-0609 & CVE-2020-0610.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

"星云"业务风控系统，主工程

Load shellcode into a new process

翻译国外的@WebBreacher的安全/渗透测试/红队面试题，有部分参考作用

Find open databases with Shodan

Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.

PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4.) Back Office Remote Code Execution (CVE-2018-19126)

记录整理日常java安全分析代码

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

IOS/MAC Denial-Of-Service [POC/EXPLOIT FOR MASSIVE ATTACK TO IOS/MAC IN NETWORK]

DNS Enumeration Script

SpiderLabs shared Nmap Tools

This repo records all the vulnerabilities of linux software I have reproduced in my local workspace

Burp plugin to decrypt AES Encrypted traffic of mobile apps on the fly

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Python api for usage with cobalt strike's External C2 specification

❄️ Research project for SubFinder core API V2