yemoli Goto Github PK
Name: yemoli
Type: User
Bio: red123
Blog: https://yml-sec.top/
Name: yemoli
Type: User
Bio: red123
Blog: https://yml-sec.top/
Flask 内存马
哥斯拉源码-v3.03-godzilla
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
运行于GitHub Actions 的仓库中自动化、自定义和执行软件开发工作流程,可以自己根据喜好定制功能,InCloud已经为您定制好了十种针对网段和域名的不同场景的信息收集与漏洞扫描流程。
Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders
Java web common vulnerabilities and security code which is base on springboot and spring security
Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
记录一下 Java 安全学习历程,也算是半条学习路线了
h2-jdbc(https://github.com/h2database/h2database/issues/3195) & mysql-jdbc(CVE-2021-2471) SQLXML XXE vulnerability reproduction.
JNDI 注入利用工具
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
JWT 弱口令 Key 爆破以及生成 NONE 加密的无 Key 的 JWTString
A cross-language remote procedure call(RPC) framework for rapid development of high performance distributed services.
MySQL Fake Server (ysoserial gadget built in and written in java)
nativeRasp that can hook native methods
我的博客(Hexo + NexT + GitPage)
鹿不在侧,鲸不予游🐋
Local privilege escalation via PetitPotam
PHP ASP 一句话木马,过狗一句话,附带PHP ASP 扫描器,扫描本地文件可疑代码
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
XXE - VULNSPY PHP AUDIT
Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection
AWD攻防赛脚本集合
奇安信VPN任意用户密码重置
可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。
MySQL fake server for read files of connected clients
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.