veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit

windows-kernel-exploits Windows平台提权漏洞集合

DBeaver数据库密码解密工具

Nmap script to guess* a GitLab version.

Various tips & tricks

Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities

kill anti-malware protected processes ( BYOVD ) ( Microsoft Won )

Extract credentials from lsass remotely

Black Hat Asia 2023 PDF Public

Collections of Orange Tsai's public presentation slides.

一键修改exe、dll的编译时间、创建时间、修改时间和访问时间

webshell下提权执行命令 Reference:https://github.com/yusufqk/SystemToken

Steal privileged token to obtain SYSTEM shell

WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）

域内普通域用户权限查找域内所有计算机上登录的用户

2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~

抓取主机保存的RDP凭据

Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang

增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持

EXP for CVE-2023-28434 MinIO unauthorized to RCE

PoC exploits I wrote. They're as is and I will not offer support

命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

A Bypass Anti-virus Software Lateral Movement Command Execution Tool

This is a standalone exploit for a vulnerable feature in Capcom.sys

自动整合全网Nuclei的漏洞POC，实时同步更新最新POC！

一个各种方式突破Disable_functions达到命令执行的shell

高性能 HTTP 正向代理工具 | A high-performance http tunneling tool