聚合空间测绘搜索（Fofa,Zoomeye,Quake,Shodan,Censys,BinaryEdge）

ntlm relay attack to Exchange Web Services

CVE-2018-8581 | Microsoft Exchange Server Elevation of Privilege Vulnerability

自动反编译闭源应用，创建codeql数据库

ADCS abuser

MS-FSRVP coercion abuse PoC

python 代码审计项目

EV: IDS Evasion via Packet Manipulation

Nmap script to guess* a GitLab version.

美国国家安全局NSA下属方程式黑客组织（Equation Group）被The Shadow Brokers（影子经纪人）hack出来的并免费分享的源码

Xepor, a web routing framework for reverse engineers and security researchers, brings the best of mitmproxy & Flask

A toolbox for extracting RSA private keys from public keys.

Some Attacks of Exchange SSRF ProxyLogon&ProxyShell

Chat automates Nuclei template generation

A tool for effective testing the binding layer of scripting languages

批量保存半佛仙人公众号的骚气表情包，识别图中文字进行命名，搜索骚图更快！

AutoSpear

Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.

Lite version of my Gatekeeper backdoor for public use.

Exploitation code for CVE-2021-40539

cve-2021-42013.py is a python script that will help in finding Path Traversal or Remote Code Execution vulnerability in Apache 2.4.50

Exploiting: CVE-2021-41349

一些poc