Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Penetration_testing_poc | 5,946 | 3 months ago | 2 | apache-2.0 | HTML | |||||
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms | ||||||||||
Pentest_note | 2,722 | a year ago | 2 | |||||||
渗透测试常规操作记录 | ||||||||||
Learnjavabug | 1,947 | 2 years ago | 9 | mit | Java | |||||
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。 | ||||||||||
Cve 2020 1472 | 1,613 | 9 months ago | 9 | mit | Python | |||||
Test tool for CVE-2020-1472 | ||||||||||
Uxss Db | 580 | 3 years ago | 4 | mit | HTML | |||||
🔪Browser logic vulnerabilities :skull_and_crossbones: | ||||||||||
Exploit_playground | 571 | 4 years ago | 1 | C | ||||||
Analysis of public exploits or my 1day exploits | ||||||||||
Cve 2018 10933 | 494 | 4 months ago | 1 | Python | ||||||
Spawn to shell without any credentials by using CVE-2018-10933 (LibSSH) | ||||||||||
Ultimatewdacbypasslist | 371 | 6 months ago | ||||||||
A centralized resource for previously documented WDAC bypass techniques | ||||||||||
Kasld | 324 | 3 months ago | mit | C | ||||||
Kernel Address Space Layout Derandomization [ KASLD ] - A collection of various techniques to infer the Linux kernel base virtual address as an unprivileged local user, for the purpose of bypassing Kernel Address Space Layout Randomization (KASLR). | ||||||||||
Cerberus | 246 | 4 years ago | 5 | Python | ||||||
一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能 |