fastjson 80 远程代码执行漏洞复现

📂 Web File Browser

A fast TCP/UDP tunnel over HTTP

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Msmap is a Memory WebShell Generator.

建议使用新版：https://github.com/jar-analyzer/jar-analyzer

DarkAngel 是一款全自动白帽漏洞扫描器，从hackerone、bugcrowd资产监听到漏洞报告生成、漏洞URL截屏、消息通知。

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

侦查守卫(ObserverWard)的指纹库

基于 docsify 快速部署 Awesome-POC 中的漏洞文档

MX1014 is a flexible, lightweight and fast port scanner.

[WIP] 整理过去的分享，从零开始的Kubernetes攻防 🧐

Springboot的一个webshell

A custom web vulnerability scanner

A memory shell for ruoyi

Execute unmanaged Windows executables in CobaltStrike Beacons

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

Red Teaming & Pentesting checklists for various engagements

A Bind Shell Using the Fax Service and a DLL Hijack

docker remote api未授权访问的利用代码

可在Windows下执行系统命令的Redis模块，可用于Redis主从复制攻击。

Dshell is a network forensic analysis framework.

UAC bypass by abusing RPC and debug objects.

The swiss army knife of LSASS dumping

A CAT called tabby ( Code Analysis Tool )