Send CVE information to the specified mailbox (from Github)
監控Github上的漏洞、紅隊等信息推送釘釘、郵箱、Telegram BOT、Server醬
安裝telegram bot需要的庫:
pip3 install python-telegram-bot
keyword_list = ["免杀", "poc", "cve", "payload", "漏洞利用", "红队", "蓝队", "redteam", "取证", "应急", "后渗透", "内网", "攻防", "网络安全","主机安全", "信息收集", "溯源"]
https://github.com/6613GitHub6613
該項目受https://github.com/yhy0/github-cve-monitor 啓發,做了一點調整。
cthun3是集成端口扫描,服务识别,netbios扫描,网站识别,暴力破解和漏洞扫描的工具. cthun(克苏恩)是魔兽世界电子游戏中一位上古之神 截图 cthun3结合viper使用时截图 使用方法 端口扫描 -ps-ip 端口扫描的ip地址范围,例如可以输入 -ps-ip 192.168.14
Discord-Ban-Immunity Discord exploit allowing you to be unbannable. 9/3/2021 Found in late August. Found by Passive and Me. Explanation If a user gets
TProxer A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF. How • Install • Todo • Join Discord How it works
CVE-2021-26855 PoC for CVE-2021-26855 -Just a checker- Usage python3 CVE-2021-26855.py -u https://mail.example.com -c example.burpcollaborator.net # C
labsecurity labsecurity is a tool that brings together python scripts made for ethical hacking, in a single tool, through a console interface. Warning
IDA2Obj IDA2Obj is a tool to implement SBI (Static Binary Instrumentation). The working flow is simple: Dump object files (COFF) directly from one exe
log4shell_finder Python port of https://github.com/mergebase/log4j-detector log4j-detector is copyright (c) 2021 - MergeBase Software Inc. https://mer
scan4log4j Python script that sends CVE-2021-44228 log4j payload requests to url list [VERY BETA] using Supply your url list to urls.txt Put your payl
log4jscanner log4j burp插件 特点如下: 0x01 基于Cookie字段、XFF头字段、UA头字段发送payload 0x02 基于域名的唯一性,将host带入dnslog中 插件主要识别五种形式: 1.get请求,a=1&b=2&c=3 2.post请求,a=1&b=2&c=
-Python-DNS-Lookup- ✨ 🌟 Python DNS Lookup ✨ 🌟 The Domain Name System (DNS) is
CVE-2021-44228 Log4Shell Proof of Concept (CVE-2021-44228) Make sure to use Java 8 JDK. Java 8 Download Images Credits Casey Dunham - Java Reverse She
fierce-fish fierce-fish是由TCC(斗象能力中心)出品并维护的开源漏洞检测框架osprey的改写,去掉臃肿功能的精简版本poc框架 PS:真的用不惯其它臃肿的功能,不过作为一个收集漏洞poc && exp的框架还是非常不错的!!! osprey For beginners fr
pwntools - CTF toolkit Pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and develo
dodgy Dodgy is a very basic tool to run against your codebase to search for "dodgy" looking values. It is a series of simple regular expressions desig
omigood (OM I GOOD?) This repository contains a free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threa
Auto_xray xray多线程批量扫描工具 简介 xray社区版貌似没有批量扫描,这就让安服仔使用起来很不方便,扫站得一个个手动添加,非常难受 Auto_xray目录下记得放xray,就跟平时一样的。 选项1:oneforall+xray 输入一个主域名,自动采集子域名然后添加到xray任务列表
netrecon A gui application used for network reconnaissance while pentesting
All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭
SubFind (Subdomain Finder Tools) Info Tools Result Of Subdomain Command In Termi
CVE-2021-36260 CVE-2021-36260 POC command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validatio
18 Sep 03, 2022
9 Nov 23, 2022
162 Nov 25, 2022
17 Dec 22, 2022
16 Dec 08, 2022
94 Dec 13, 2022
33 Jan 04, 2023
5 Nov 09, 2022
1 Jun 30, 2022
2 Feb 14, 2022
3 Jul 23, 2022
10 Dec 30, 2022
9.8k Dec 31, 2022
112 Nov 25, 2022
13 Jul 13, 2022
13 Nov 09, 2022
4 Sep 03, 2022
331 Jan 01, 2023
2 Jan 25, 2022
165 Dec 21, 2022