Pentest-tools. Intranet penetration tools
878WindowsElevation. Windows Elevation(持续更新)
666CSPlugins. Cobaltstrike Plugins
415LinuxEelvation. Linux Eelvation(持续更新)
410CVE-2021-22205. CVE-2021-22205& GitLab CE/EE RCE
284Red-Team. Red-Team Attack Guid
279Information-Security. Information security
212CVE-2022-0847. CVE-2022-0847
91CVE-2021-22986. CVE-2021-22986 & F5 BIG-IP RCE
91Awesome-Pentest. Collection of penetration testing tools
83CVE-2020-36179. CVE-2020-36179~82 Jackson-databind SSRF&RCE
82CVE-2021-27928. CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞
63Monitor. A old way to Persistence
53CVE-2020-35728. CVE-2020-35728 & Jackson-databind RCE
42Hadoop-Yarn-ResourceManager-RCE. Hadoop Yan ResourceManager unauthorized RCE
39CVE-2022-1388. CVE-2022-1388 F5 BIG-IP iControl REST RCE
37Map-of-IT-Architects-Technical-Knowledge. IT架构师技术知识图谱
31CVE-2021-2109. CVE-2021-2109 && Weblogic Server RCE via JNDI
31CVE-2020-17530. S2-061 CVE-2020-17530
29BlockChainSec. BlockChain Security
27MysqlHoneypot. MysqlHoneypot
25HW-2023. HW-POC
24APT-GUID. APT-GUID
23Pentest-Command. Pentest-Command
20SelectMyParent. PPID Spoofing
19CheckPWD. Check the default pwd of product via checklist.
18FastJsonAutoTypeBypass. FastJsonAutoTypeBypass
16CVE-2020-36184. CVE-2020-36184 && Jackson-databind RCE
15Alibab-Nacos-Unauthorized-Login. Alibab Nacos Unauthorized Login
14CVE-2021-21975. CVE-2021-21975 vRealize Operations Manager SSRF
13WebShells. WebShell studying
13CVE-2017-16995. CVE-2017-16995(Ubuntu本地提权漏洞)
130DayList. 0DayList
13CVE-2021-30461. CVE-2021-30461
12CVE-2020-36188. CVE-2020-36188 &&Jackson-databind RCE
11CVE-2017-7269. Ruby
11SonicWall. SonicWall SSL-VPN RCE
10CVE-2020-5902. CVE-2020-5902
10CVE-2017-3506. CVE-2017-3506
10RemoteDLLInjector. RemoteDLLInjector
9CVE-2019-0230. S2-059(CVE-2019-0230)
9TongDa-RCE. 通达文件包含+文件上传导致RCE
9AdFind. AdFind
8php_mt_seed. php_mt_seed is a PHP mt_rand() seed cracker
7CVE-2020-11652. CVE-2020-11652 & CVE-2020-11651
6CVE-2020-35729. CVE-2020-35729
5CVE-2020-13937. Apache Kylin API Unauthorized Access
5RDPLinkEnum. RDPLinkEnum
5CVE-2020-2883. CVE-2020-2883
5EmergencyTools. EmergencyTools
5Rogue-MySql-Server. Rogue-MySql-Server
5Alibab-Nacos-Unauthorized-Reset-PWD. Alibab-Nacos-Unauthorized-Reset PWD
4CVE-2020-17456. CVE-2020-17456 & Seowon SLC 130 Router RCE
4BlockChainConstruction. BlockChain Security Construction
3CVE-2017-10271. CVE-2017-10271
2CVE-2021-3317. CVE-2021-3317
2MakeMeEnterpriseAdmin. MakeMeEnterpriseAdmin
2Mysql-Readfile. Mysql-Readfile
1RemoteObjectInvocationHandler. bypass JEP290 RaspHook code
1