Skip to content
View zangcc's full-sized avatar
🌈
保持乐观,积极上进
🌈
保持乐观,积极上进
323 followers · 8 following
  • qaxnb
  • 广东-中国
  • 17:22 (UTC +08:00)

Achievements

Achievement: Pull SharkAchievement: Starstruckx2

Achievements

Achievement: Pull SharkAchievement: Starstruckx2

Block or report zangcc

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
zangcc/README.md

Image text

Hi there , I'm zangcc 👋

  • 🔭 I’m currently working on: Penetration test、SDL(Security Development Lifecycle)Code Audit Engineer
  • 🌱 I’m currently learning: Codeql/Java code audit
  • 👯 I’m looking to collaborate on: Ideas and suggestions for vulnerability scanning tool development, intending to develop a large integrated vulnerability scanning tool
  • 🤔 I’m looking for help with: There is nothing for the time being
  • 💬 Ask me about: Network security, penetration testing, design and implementation of vulnerability scanning tool based on JavaFX
  • 📫 How to reach me: (😄My Blog~)
  • 😄 Pronouns: He/him
  • ⚡ Fun fact: 不再挖洞,努力coding.. 本人由于工作变化,已不再参加任何红蓝对抗-攻防演练,溯源到id与本人无关。
  • 🫡 微信公众号:Eureka安全团队
  • I have always regarded programming as a hobby, non-professional programming, all are small tools implemented with code on a whim, so you can issue questions to me for many bugs.

Github State

zangcc's GitHub stats

Pinned Loading

  1. Aazhen-RexHa Aazhen-RexHa Public

    自研JavaFX图形化漏洞扫描工具,支持扫描的漏洞分别是: ThinkPHP-2.x-RCE, ThinkPHP-5.0.23-RCE, ThinkPHP5.0.x-5.0.23通杀RCE, ThinkPHP5-SQL注入&敏感信息泄露, ThinkPHP 3.x 日志泄露NO.1, ThinkPHP 3.x 日志泄露NO.2, ThinkPHP 5.x 数据库信息泄露的漏洞检测,以及批量检…

    448 59

  2. Aakian-FaCai Aakian-FaCai Public

    基于前端vue框架的JavaFx图形化GUI漏洞扫描工具,支持一键扫描vue-manage-system系统前端泄露的未授权目录接口漏洞,并且对扫描的暴露目录进行逐一测试和验证,方便渗透人员快速确定未授权接口。还添加了出口IP地址信息本地DNS信息等的查询,方便清楚自身出口IP。

    236 22

  3. zangcc_IPAddr_Scanner zangcc_IPAddr_Scanner Public

    批量IP地址归属地爬取工具,基于javafx开发,图形化界面操作更简单。实现IP地址查询,IP地址批量查询,IP归属地批量查询功能。IP库调用的是IP318.com和纯真IP库,都是较权威的IP查询网站。

    46 6

  4. CVE-2022-22965-rexbb CVE-2022-22965-rexbb Public

    CVE-2022-22965\Spring-Core-RCE核弹级别漏洞的rce图形化GUI一键利用工具,基于JavaFx开发,图形化操作更简单,提高效率。

    99 15

  5. Java_Risky_Functions Java_Risky_Functions Public

    Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickly locate vulnerability points in the daily code audit proces…

    29 1

  6. Encrypted_demo_App Encrypted_demo_App Public

    加密app渗透测试包,用于brida和frida练习hook逆向技术的安卓apk源码。尝试暴破出加密密码并进行登录即可通关。自动加解密。

    11 2