ll160803

ll160803

5 followers · 66 following

Achievements

ruoyi-4.8.0-RCE Public
Forked from R4gd0ll/ruoyi-4.8.0-RCE

若依4.8.0后台RCE

Java Updated May 21, 2025
jdbc-tricks Public
Forked from yulate/jdbc-tricks

《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目

Python Apache License 2.0 Updated Apr 19, 2025
AICodeScan Public
Forked from honysyang/AICodeScan

基于AI实现的C语言代码审计工具

HTML Updated Mar 4, 2025
wechatDataBackup Public
Forked from git-jiadong/wechatDataBackup

一键导出PC微信聊天记录工具

Go Apache License 2.0 Updated Dec 15, 2024
web-chains Public
Forked from vulhub/java-chains

Web 版 Java Payload 生成与漏洞利用工具，提供 Java 反序列化、Hessian 1/2 反序列化等 Payload 生成，以及 JNDI Exploit、Fake Mysql Exploit、JRMPListener 等相关利用

Updated Nov 2, 2024
CVE-2024-38077-POC Public
Forked from SecStarBot/CVE-2024-38077-POC

原文已被作者删除，备份用，非原创，EXP & POC

Python Updated Aug 9, 2024

POC Public

Forked from greenberglinken/2023hvv_1

收集整理漏洞EXp/POC,大部分漏洞来源网络，目前收集整理了800多个poc/exp，长期更新。

Updated Jul 27, 2024

heapdump_shiro_vuln Public

Forked from P4r4d1se/heapdump_shiro_vuln

heapdump泄露Shiro key从而RCE的漏洞环境

Java Updated May 9, 2024

JavaSec Public

Forked from Y4tacker/JavaSec

a rep for documenting my study, may be from 0 to 0.1

Java Apache License 2.0 Updated Dec 3, 2023

JavaSecurityLearning Public

Forked from Drun1baby/JavaSecurityLearning

记录一下 Java 安全学习历程，也算是半条学习路线了

Java Updated Nov 16, 2023

shiro-redis-spring-boot-tutorial Public

Forked from para-paradise/shiro-redis-spring-boot-tutorial

该仓库是《redis未授权到shiro反序列化之session回显⻢》文章复现环境

Java Updated Oct 24, 2023

2023_Hvv Public

Forked from thelostworldFree/2023_Hvv

Updated Aug 10, 2023

CVE-2023-34312-exp Public

Forked from lan1oc/CVE-2023-34312-exp

复现CVE-2023-34312所需的两个恶意dll文件

Updated Aug 7, 2023

In-Swor Public

Forked from snnxyss/In-Swor

一个简单内网渗透工具免杀目前mimikatz,frp,elevationstation,bypassuac。360报毒qvm20请更换exe图标资源。

C++ Creative Commons Zero v1.0 Universal Updated Aug 7, 2023

Hikivision-Fastjson-py Public

Python Updated Jul 24, 2023

phpstudy_xss Public

Forked from F12-F12/phpstudy_xss

phpstudy xss漏洞利用全自动，采用堆叠注入修改密码的方式

Go Updated Jul 11, 2023

NacosRce Public

Forked from c0olw/NacosRce

Nacos JRaft Hessian 反序列化 RCE 加载字节码注入内存马不出网利用

Java Updated Jul 5, 2023

xiehe-toupao Public

Forked from hanviki/toupao

JavaScript Updated Jan 17, 2023

newdeclare Public

Vue Apache License 2.0 Updated Jan 17, 2023

SpringSecurity Public

Forked from ax1sX/SpringSecurity

A list for Spring Security

Java Updated Dec 26, 2022

XH_OUT Public

Forked from hanviki/XH_OUT

一些外包的

JavaScript Updated Dec 9, 2022

xiehe-college-demo Public

Forked from Topskys/xiehe-college-demo

xiehe-college-demo

JavaScript Updated Aug 17, 2022

edusrc_POC Public

Forked from Cl0udG0d/edusrc_POC

在edusrc平台上对于一些通用漏洞检测时编写的简单python POC脚本

Python Updated Jul 11, 2022

Serein Public

Forked from W01fh4cker/Serein

【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022-26134和DedeCMS v5.7.87 SQL注入 CVE-2022-23337。

Python Updated Jul 5, 2022

SXF_aTrust_sandbox_bypass Public

Forked from DaxiaSec/SXF_aTrust_sandbox_bypass

深信服零信任沙箱逃逸( 正常功能，所以我也不打算再提交CNVD, 给使用这款产品的用户介绍下功能效果）

Updated Jun 10, 2022

All-Defense-Tool Public

Forked from guchangan1/All-Defense-Tool

本项目集成了全网优秀的攻防工具项目，包含自动化利用，子域名、敏感目录、端口等扫描，各大中间件，cms漏洞利用工具以及应急响应等资料。

6 2 Updated May 22, 2022

CVE-2022-29072 Public

Forked from kagancapar/CVE-2022-29072

7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.

HTML GNU General Public License v3.0 Updated Apr 17, 2022

nginx_shitpost Public

Forked from bb33bb/nginx_shitpost

Nginx 0-day on latest nginx

C Updated Apr 12, 2022

0day Public

Forked from msr00t/0day

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新

C GNU General Public License v3.0 Updated Mar 30, 2022

Advanced-SQL-Injection-Cheatsheet Public

Forked from kleiton0x00/Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

Updated Mar 28, 2022

ll160803

Achievements

Achievements

ruoyi-4.8.0-RCE Public

Uh oh!

jdbc-tricks Public

Uh oh!

AICodeScan Public

Uh oh!

wechatDataBackup Public

Uh oh!

web-chains Public

Uh oh!

CVE-2024-38077-POC Public

Uh oh!

POC Public

Uh oh!

heapdump_shiro_vuln Public

Uh oh!

JavaSec Public

Uh oh!

JavaSecurityLearning Public

Uh oh!

shiro-redis-spring-boot-tutorial Public

Uh oh!

2023_Hvv Public

Uh oh!

CVE-2023-34312-exp Public

Uh oh!

In-Swor Public

Uh oh!

Hikivision-Fastjson-py Public

Uh oh!

phpstudy_xss Public

Uh oh!

NacosRce Public

Uh oh!

xiehe-toupao Public

Uh oh!

newdeclare Public

Uh oh!

SpringSecurity Public

Uh oh!

XH_OUT Public

Uh oh!

xiehe-college-demo Public

Uh oh!

edusrc_POC Public

Uh oh!

Serein Public

Uh oh!

SXF_aTrust_sandbox_bypass Public

Uh oh!

All-Defense-Tool Public

Uh oh!

CVE-2022-29072 Public

Uh oh!

nginx_shitpost Public

Uh oh!

0day Public

Uh oh!

Advanced-SQL-Injection-Cheatsheet Public

Uh oh!