zhzyker

🔥

make bug

之乎者也 zhzyker

🔥

make bug

天苍苍，野茫茫，风吹的我就像头羊~ @0-sec && @pwnwiki-project && @xiecat

2.2k followers · 750 following

@0-sec @xiecat @pwnwiki-project @cisp-pte @YanYun-Lab
${jndi:ldap://127.0.0.1/zhzyker}
19:51 (UTC +08:00)
WeChat: zhzy-mac
@zhzyker

Achievements

Highlights

Developer Program Member

Organizations

Trustify Public
Forked from y00ga-sec/Trustify

Attack Active Directory Trusts with a single tool

PowerShell 1 MIT License Updated Jan 15, 2025
dismap Public

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

security detection fingerprint cybersecurity identification fingerprint-scanner golang-tools

Go 2,128 274 GNU General Public License v3.0 Updated Jan 29, 2024
Research Public
Forked from gobysec/Research

Research analysis

Updated Jul 28, 2023
vulmap Public

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

security exploit scanner rce pentesting vulnerabilities cve

Python 3,501 570 GNU General Public License v3.0 Updated Apr 26, 2023
GobyVuls Public
Forked from gobysec/GobyVuls

Vulnerabilities of Goby supported with exploitation.

Go 2 Updated Apr 13, 2023
titan Public
Forked from seahop/titan

Titan: A generic user defined reflective DLL for Cobalt Strike

C 1 Updated Nov 20, 2022
microwaveo Public
Forked from Ciyfly/microwaveo

将dll exe 等转成shellcode 最后输出exe 可定制加载器模板支持白文件的捆绑 shellcode 加密

Go 1 Updated Sep 8, 2022
Log4j2Passive Public
Forked from whwlsfb/Log4j2Scan

Log4j2 RCE Passive Scanner plugin for BurpSuite

Java 9 3 Apache License 2.0 Updated Jul 12, 2022
loading Public
Forked from liamg/loading

A collection of highly customisable loading bars for Go CLI apps.

Go 1 MIT License Updated Jun 29, 2022
linux-exploit-suggester Public
Forked from The-Z-Labs/linux-exploit-suggester

Linux privilege escalation auditing tool

Shell 1 GNU General Public License v3.0 Updated Jun 8, 2022
Wordpress-BruteForce-List Public
Forked from kongsec/Wordpress-BruteForce-List

WordPress Bruteforce List, Default paths and endpoints

1 Updated May 14, 2022
zhzyker Public

12 4 Updated Apr 26, 2022
HowToCook Public
Forked from Anduin2017/HowToCook

程序员在家做饭方法指南。Programmer's guide about how to cook at home (Chinese).

JavaScript 2 The Unlicense Updated Mar 3, 2022
CVE-2021-4034 Public

polkit pkexec Local Privilege Vulnerability to Add custom commands

C 45 22 Updated Jan 27, 2022
JNDIExploit Public
Forked from WhiteHSBG/JNDIExploit

对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改

Java 1 2 Updated Dec 30, 2021
logmap Public

Log4j jndi injection fuzz tool

injection fuzz-testing jndi log4j2 cve-2021-44228 log4shell cve-2021-45046

Python 70 15 GNU General Public License v3.0 Updated Dec 24, 2021
CVE-2021-3129 Public

Laravel <= v8.4.2 debug mode: Remote code execution (CVE-2021-3129)

PHP 159 58 Updated Dec 14, 2021
PayloadsAllTheThings Public
Forked from swisskyrepo/PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Python 6 1 MIT License Updated Oct 12, 2021
mass_cve-2021-41773 Public
Forked from justakazh/mass_cve-2021-41773

MASS CVE-2021-41773

Python Updated Oct 8, 2021
goblin Public
Forked from xiecat/goblin

一款适用于红蓝对抗中的蜜罐和钓鱼系统

Go 4 Updated Sep 10, 2021
Scanners-Box Public
Forked from We5ter/Scanners-Box

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

11 2 Updated Sep 3, 2021
debian-media-box Public
Forked from moesoha/debian-media-box

“Debian 小药盒”，一个用来包装 Debian 安装介质的盒子设计和介绍用的说明书。

TeX Updated Aug 15, 2021
AliyunAccessKeyTools Public
Forked from NS-Sp4ce/AliyunAccessKeyTools

阿里云AccessKey泄漏利用工具

C# 5 5 Updated Jul 14, 2021
goon Public
Forked from j5s/goon

goon，是一款基于golang开发的扫描工具，暂时支持portscan、webscan、titlescan、dirscan、fofascan、pluginscan等模块功能，当然也支持将这些模块联动起来的autoscan。后期也会慢慢加入其他零件模块，感谢您的使用，也希望您能提供宝贵意见。

5 3 Updated Jun 28, 2021
shiro_attack Public
Forked from dogadmin/shiro_attack

shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）

4 1 Updated Jun 22, 2021
shiro-1.2.4-rce Public

shiro <= 1.2.4 反序列化远程命令执行利用脚本

Python 52 7 Updated Jun 21, 2021
yougar0.github.io Public
Forked from baisesecxxx/yougar0.github.io

漏洞知识库

7 3 Updated Apr 21, 2021
2021_Hvv Public
Forked from Ershu1/2021_Hvv

2021 hw

8 6 Updated Apr 19, 2021
Goby-PoC Public

some goby poc

Go 15 3 Updated Apr 11, 2021
exphub Public

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-…

drupal exploit nexus tomcat poc vulnerability webshell

Python 4,268 1,102 Updated Apr 4, 2021

之乎者也 zhzyker

Achievements

Achievements

Highlights

Organizations

Trustify Public

Uh oh!

dismap Public

Uh oh!

Research Public

Uh oh!

vulmap Public

Uh oh!

GobyVuls Public

Uh oh!

titan Public

Uh oh!

microwaveo Public

Uh oh!

Log4j2Passive Public

Uh oh!

loading Public

Uh oh!

linux-exploit-suggester Public

Uh oh!

Wordpress-BruteForce-List Public

Uh oh!

zhzyker Public

Uh oh!

HowToCook Public

Uh oh!

CVE-2021-4034 Public

Uh oh!

JNDIExploit Public

Uh oh!

logmap Public

Uh oh!

CVE-2021-3129 Public

Uh oh!

PayloadsAllTheThings Public

Uh oh!

mass_cve-2021-41773 Public

Uh oh!

goblin Public

Uh oh!

Scanners-Box Public

Uh oh!

debian-media-box Public

Uh oh!

AliyunAccessKeyTools Public

Uh oh!

goon Public

Uh oh!

shiro_attack Public

Uh oh!

shiro-1.2.4-rce Public

Uh oh!

yougar0.github.io Public

Uh oh!

2021_Hvv Public

Uh oh!

Goby-PoC Public

Uh oh!

exphub Public

Uh oh!