There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Attack_Code
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.sshd_backdoor
/root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.k8spider
Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Verified IP discoveryDocker-Release-Agent-Escape
Docker 逃逸 Release Agent 利用始末yapi-rce-webshell
Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小public-nuclei-template
Esonhugh self-maintained-nuclei-templates public version. Use this as ~/nuclei-templates/local/esonhugh-public-nuclei, nuclei will add automatically when scanning and never conflict to other nuclei template.WeaponizedVSCode
A VSCode Workspace based hacking environment utils. Starting your Note-Driven Hacking experience. Checkout the following link to sample of HackThebox mist.htbSpringCloudHeapdump
anonymous to cluster-admin via Heapdump.KubernetesCS
Kubernetes has its “ADCS” -- How To Backdoor a Kubernetes in silence and more persistent?Gopherus3
Python3 Based gopherus, completely refactored and added more feature.KubernetesCRInjection
Here is a common vulnerability when Kubernetes Controller designed.ebpf_cilium_starter
cilium ebpf common starter template for go.OpenAI-Platform-API
[DEPRECATED WARNING] Add SecretKey List it and Delete it API SDKWizEKSClusterGame
WpTicketMaster
Here is useful scripts collections. You can forge tickets locally with secret keys or certificates. It's useful when you want backdoor/persistence with opsecSelf-Metasploit
Self collected Metasploit module (include self maintaining)flipper_kdf
Flipper zero NFC is mystery. KDF is the simple one in complicatedChatGPT-Web-Setting-Funny-Abuse
Play with ChatGPT-Web and found the HTML rendering in description settings. [Add Custom js and html in the XSS payload to enhanced ChatGPT-Web]CloudPolicy
An Cloud PolicyDocument go parsing library for AWS-like Cloud providersmy_durdur
Cilium/ebpf Learning idea from boratanrikulu/durdurAliyunCTF-Email-Spoofing-DKIM-Creator
Aliyun CTF Teapot mail server POC for DKIMKFC_Crazy_Thursday_in_metasploit
肯德基疯狂星期四~~利用~~辅助模块AI-Enhanced-hacking
AI Enhanced hacking and Osint ArticleSelfLinuxKernelDebugging
Based on arm64 linux kernel code using VSCode and qemu debug with gef. Self maintain.Works on KaliLinux in PD(m1 mac).sculptor
Flexible and powerful Go library for transforming data from various formats (CSV, JSON, etc.) into desired Go struct types. (Insecure)GitBeHacked
Funny idea for Git dir leak hack tools hack backebpf_cilium_doc
unofficial guide of cilium/ebpf library. 非官方 cilium ebpf 库踩坑指南flipperzero_ufbt_application_howto
flipperzero ufbt vscode project how to with no canvas hack? Howto: raw project github.com:csBlueChip/FlipperZero_plugin_howto.gitgo-cli-template-v1
Cobra Viper TableWriter ColorCobra survey all in one templateOpenShift_IGN_ConfigFileExtractor
Red Team Script for Cloud pentest with private Cloud built with OpenShift. Fast Extrated the config information in bootstrap.ign filegitlab_honeypot
CVE-2023-7028 killerapisix-webshell-rce
apisix Authed admin dashboard - RCE with web shell sample -dn42ConfigGenerator
Python based auto config toolEsonhugh
my descriptionNuclei-Template-Backup
Official Nuclei Template and other templatesShellScriptSnippet
abbr. as sss. This is a Utils designed for Terminal based user for manage, share, logging their Shell Script in one place.-WinAPI-Tricks-backup
from user: https://github.com/vxunderground/WinAPI-Tricks.git and https://github.com/vxunderground/VX-APIgoShellcodeLoader
go语言下的 shellcode 加载工具self-maintained-Nuclei-Template
个人使用与维护的 Nuclei POC 模版库JD-Freefuckfucker
who fuck the fucker? and who watch the watcherinsecure-rancher-cli
Insecure rancher CLI with default v3 apiReverseShellPayloads
Robotic_club
my archive of the program in my robotic clubDevstream-ConfigFile-Command-Injection
Devstream Command injection via evil yaml file in plugin gitlab-ce-dockerNetworker-Project
Networker Project: DN42 网络配置生成预览收集 Web 服务My-CTF-Challenge
CTF Challenge I designedsvelte-smui-template
Svelte with Svelte Material UI (SMUI). Easy setup theme. Javascript.nuclei-dsl-virtual-machine-modified
nuclei modified. Demo of DSL support Store and load function which makes the nuclei DSL extractor can do things with pipeline in one templatewechat-template
微信公众号后端的快速开发框架Deprecated_Friendlink
[deprecated]bbrf-server-helm-chart
This is the helm chart of team-base bug bounty framework (project https://github.com/honoki/bbrf-server). You can go with this chart in your team infrastructure.WeaponziedVSCode-Example-MIST.HTB
Weaponized VSCode Template Example (Release On Machine Expired)tencent-coding-openapi
腾讯云 Coding CICD Devops 一体化平台 OpenApi 对接 SDK 以及个人或 OAuth Token 利用演示SimpleLogServer
Used Telegram bot and local document as a receive platform.DASCTF-CSTI
考点为 CSTI 获取 token (干掉 html 标签 < 头 和 XSS 可能的标签)CS_notesbook
CS means cheatsheets.this is a little notebook for you to make your work fast and high-quality.you can backup any command you easily forget in itjusthomework
HDU Help test homeworkupdate-alternative-java
MacOS - Java version switcher based on PATH environment hijack.(self used)EsonProfileShareAndBackup
This is profiles of esonhugh personal use.and i share with publicEvilSlnProject
Same as csproj powerlessshell but using sln to redirect to csproj filealiyun-system-managed
aliyun system managed policy crawlerLove Open Source and this site? Check out how you can help us