Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)

Automation for internal Windows Penetrationtest / AD-Security

Impacket implementation of CVE-2021-1675

Community curated list of templates for the nuclei engine to find security vulnerabilities.

ProxyLogon Pre-Auth SSRF To Arbitrary File Write

Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.

有关渗透测试的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-ex…

Fast Go Application Scanner

Pre-Built Vulnerable Environments Based on Docker-Compose

Go实现的Trojan代理，支持多路复用/路由功能/CDN中转/Shadowsocks混淆插件，多平台，无依赖。A Trojan proxy written in Go. An unidentifiable mechanism that helps you bypass GFW. https://p4gefau1t.github.io/trojan-go/

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Root shell PoC for CVE-2021-3156

Build a local copy of CVE (NVD and Japanese JVN). Server mode for easy querying.

A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)

Build a local copy of CPE(Common Platform Enumeration)

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

Generate a list of IP Addresses and Associated Geographical Information ( City, Country, Zip, Lat, Long )

目前实现了网络空间资产探测、指纹检索、漏洞检测、漏洞全生命周期管理、poc定向检测、暗链检测、挂马监测、敏感字检测、DNS监测、网站可用性监测、漏洞库管理、安全预警等等~

IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

Example repo for the amazing Mastering GitHub O’Reilly video training series