mirror of
https://github.com/euphrat1ca/Security-List.git
synced 2026-06-30 21:09:51 +08:00
274
274
This commit is contained in:
parent
e9d536ec99
commit
becd27cd66
@ -395,8 +395,8 @@ W:ns4gov.000webhostapp.com;
|
||||
- https://github.com/chaitin/xray //GO.洞鉴扫描引擎社区版。主动扫描、被动代理,sql、命令注入、重定向、路径遍历,插件化配置。社区版
|
||||
- https://github.com/ox01024/Xray_and_crwlergo_in_server //PY.PY.利用“xray”被动扫描与“0Kee-Team/crawlergo”爬虫,微信server酱联动。相同还可以使用awvs爬虫功能等。
|
||||
G:timwhitez/crawlergo_x_XRAY;
|
||||
- https://github.com/w-digital-scanner/w13scan //PY3.boy-hack被动扫描器Passive Security Scanner,官网x.hacking8.com。G:netxfly/passive_scan;
|
||||
- https://github.com/netxfly/Transparent-Proxy-Scanner //GO.基于vpn和透明代理的web漏洞扫描器,存储数据为mongodb
|
||||
- https://github.com/w-digital-scanner/w13scan //PY3.boy-hack被动扫描器Passive Security Scanner。W:x.hacking8.com;G:netxfly/passive_scan;--
|
||||
- https://github.com/netxfly/Transparent-Proxy-Scanner //GO.基于vpn和透明代理的web漏洞扫描器,存储数据为mongodb。
|
||||
- https://github.com/cloudtracer/paskto //js.基于Nikto扫描规则的被动式路径扫描以及信息爬虫
|
||||
- https://www.telerik.com/fiddler //C#.Fiddler4 Free Web Debugging Proxy。W:charlesproxy.com 青花瓷;P:getpostman.com http调试工具。P:soft.125.la 精易助手;G:jakubroztocil/httpie
|
||||
- https://github.com/MegatronKing/HttpCanary //JS.基于NetBare的安卓移动端抓包代理工具。welljob,1k.
|
||||
@ -722,7 +722,7 @@ G:timwhitez/crawlergo_x_XRAY;
|
||||
- https://www.secpulse.com/archives/100484.html //Linux、Windows权限维持常用后门学习总结1
|
||||
- https://www.secpulse.com/archives/103301.html //Linux、Windows权限维持常用后门学习总结2,Windows后门总结
|
||||
- https://www.4hou.com/posts/oAAj //基于WinRM与HTTP Server API的端口复用。利用IIS的端口共享功能绕过防火墙
|
||||
- https://www.4hou.com/posts/rMOp //利用IIS的模块功能绕过防火墙。G:0x09AL/IIS-Raid;G:WBGlIl/IIS_backdoor;
|
||||
- https://www.4hou.com/posts/rMOp //利用IIS的模块功能绕过防火墙。G:0x09AL/IIS-Raid //IIS后门;G:WBGlIl/IIS_backdoor;
|
||||
- https://mp.weixin.qq.com/s/-cmM1k3--H6p1ditfQHPEw/ //常见的web容器后门笔记。iis后门/java框架后门/tomcat后门/apache后门/nginx后门/。G:t57root/pwnginx;
|
||||
### 后渗透白利用
|
||||
- https://github.com/securemode/DefenderKeys //枚举出被 Windows Defender 排除扫描的配置
|
||||
|
||||
@ -14,6 +14,7 @@
|
||||
- https://github.com/EdgeTranslate/EdgeTranslate //js.跨平台侧边翻译,多接口
|
||||
- https://www.kslabs.ru/ //ksweb安卓手机端建站
|
||||
- https://github.com/huiyadanli/RevokeMsgPatcher //C#.A hex editor for WeChat/QQ/TIM - PC版微信/QQ/TIM防撤回 双开。
|
||||
- https://www.bjinternetcourt.gov.cn/ //北京互联网法院
|
||||
## 公开资源工具
|
||||
- https://archive.org //Internet Archive is a non-profit library of millions of free books, movies, software, music, websites, and more.
|
||||
- http://web.archive.org //网站时光机
|
||||
@ -52,18 +53,17 @@
|
||||
- http://ohshitgit.com/ //intro.git操作手册
|
||||
- http://www.vuln.cn/tools/ftp //在线FTP登录
|
||||
- https://github.com/stascorp/rdpwrap //Pascal.开启异步并发rdp请求服务,3389分身多开。
|
||||
### 协同办公
|
||||
## 协同办公
|
||||
- https://gitee.com/pengzhile/atlassian-agent //java.支持和谐版本Atlassian家几乎所有产品(JIRA),同时支持插件(包括插件市场的第三方插件)
|
||||
- https://github.com/lxerxa/actionview //Vuejs.类Jira的问题需求跟踪工具,前端基于reactjs+redux、后端基于php laravel-framework。Gitee:actionview;--
|
||||
- http://mrdoc.zmister.com/ //PY.给予django的MarkDown文档写作、项目管理,支持一键部署。Gitee:zmister/MrDoc;G:zmister2016/MrDoc;--
|
||||
### 办公通讯
|
||||
- http://sc.ftqq.com/3.version //ServerChan信息通知server酱从服务器推报警和日志到手机的工具。P:slack 通讯框架;P:企业微信;P:钉钉;P:TG BOT telegram机器人;
|
||||
- https://shimo.im/ //石墨笔记协同办公,支持三件套、思维导图、画板,需要在线。P:腾讯文档 //支持离线,三件套;P:语雀 //需要在线,支持文档、表格;P:Google文档 //三件套,需要在线;
|
||||
- https://mattermost.com/ //协同办公通讯。W:github.com/mattermost;
|
||||
- https://github.com/leanote/leanote/ //JS。开源笔记,类似为知笔记、envnote等。
|
||||
### 项目管理
|
||||
- https://github.com/itcloudy/ERP //go.基于beego的电商进存销管理系统
|
||||
- https://www.redmine.org/ //Ruby on rails.类似于jira项目管理
|
||||
- https://gitee.com/pengzhile/atlassian-agent //java.支持Atlassian家几乎所有产品(JIRA),同时支持插件(包括插件市场的第三方插件)
|
||||
- https://github.com/lxerxa/actionview //vuejs.类Jira的问题需求跟踪工具,前端基于reactjs+redux、后端基于php laravel-framework。Gitee:actionview;
|
||||
- https://github.com/star7th/showdoc //JS.文档管理平台。
|
||||
- https://gitee.com/zmister/MrDoc //PY.简单的MarkDown文档写作、管理系统。
|
||||
- https://www.redmine.org/ //Ruby on rails.类似于jira项目管理.
|
||||
- https://github.com/star7th/showdoc //JS.开发文档、接口管理平台。
|
||||
### 网盘同步云存储
|
||||
- https://send.firefox.com //火狐网盘
|
||||
- https://www.upload.ee/ //文件共享平台
|
||||
@ -71,7 +71,8 @@
|
||||
- https://github.com/ganlvtech/down_52pojie_cn //PHP.52pojie网盘源码
|
||||
- https://github.com/micahflee/onionshare //PHP.利用onion洋葱服务器匿名文件共享
|
||||
- https://github.com/filebrowser/filebrowser //GO.基于Caddy框架的网盘
|
||||
- https://github.com/haiwen/seafile //C.私有云网盘,速度快,功能少
|
||||
- https://github.com/haiwen/seafile //C.私有云网盘,速度快,功能少。
|
||||
- https://github.com/kgretzky/pwndrop //基于HTTP and WebDAV的文档、文件、payload共享
|
||||
### 文件同步
|
||||
- https://github.com/canton7/SyncTrayzor //C#.同步网盘syncthing。社区版。G:syncthing/syncthing;P:freefilesync.org;P:filegee //商业;P:goodsync //商业版;--
|
||||
- https://blog.csdn.net/qq_39815184/article/details/78215141 //intro。如何利用Syncthing+蒲公英快速实现异地文件同步。
|
||||
@ -79,6 +80,8 @@
|
||||
- https://gitea.io/zh-cn/ //GO。私有git服务,一键git安装。G:go-gitea/gitea;--
|
||||
- https://github.com/sjqzhang/go-fastdfs //go。分布式文件系统(私有云存储)。
|
||||
### 文档编辑
|
||||
- https://shimo.im/ //石墨笔记协同办公,支持三件套、思维导图、画板,需要在线。P:腾讯文档 //支持离线,三件套;P:语雀 //需要在线,支持文档、表格;P:Google文档 //三件套,需要在线;
|
||||
- https://github.com/leanote/leanote/ //JS。开源笔记,类似为知笔记、envnote等。
|
||||
- https://www.mythicsoft.com //全文检索工具。FileLocatorPro,类似于SearchMyFiles架构
|
||||
- https://www.voidtools.com //Everything文件和文件夹快速定位。W:anytxt.net;
|
||||
- http://www.sweetscape.com/010editor/ //识别不同文件格式(模板)的16进制编辑器,具有文件修复功能。
|
||||
|
||||
@ -1,4 +1,4 @@
|
||||
## 欺骗防御
|
||||
# 欺骗防御
|
||||
- https://github.com/paralax/awesome-honeypots //优秀蜜罐,相关技术手段收集。goodjob。G:OWASP/Honeypot-Project;P:SDN网络微隔离;--
|
||||
- https://www.freebuf.com/articles/paper/207739.html //intro。开源蜜罐测评报告
|
||||
- https://github.com/Cymmetria //欺骗防御公司。Struts2、weblogic、telnet、Cisco ASA、Micros等仿真蜜罐,honeycomb低交互蜜罐框架
|
||||
@ -8,7 +8,7 @@
|
||||
- https://www.cnblogs.com/k8gege/p/12390265.html //看我如何模拟Cobalt Strike上线欺骗入侵者
|
||||
- https://www.freebuf.com/articles/ics-articles/230402.html //一种工控蜜罐识别与反识别技术研究与应用实践
|
||||
- https://www.freebuf.com/articles/system/232669.html //内网Kerberos用户蜜罐。主动防御
|
||||
### 蜜罐安全
|
||||
## 蜜罐服务
|
||||
- https://github.com/phage-nz/malware-hunting //PY.利用蜜罐进行恶意文件捕获。包含众多蜜罐使用说明
|
||||
- https://github.com/threatstream/mhn //PY.现代蜜网,集成了多种蜜罐的安装脚本,可以快速部署、使用,也能够快速的从节点收集数据
|
||||
- https://github.com/dtag-dev-sec/tpotce //T-POT.里面使用docker技术实现多个蜜罐组合,配合ELK进行研究与数据捕获
|
||||
@ -21,16 +21,19 @@
|
||||
- https://gitlab.com/SecurityBender/webhoneypot-framework //PY3.基于docker和docker-compose,现支持wordpress/drupal
|
||||
- https://github.com/mushorg/snare //PY3.web安全蜜罐,可克隆指定Web页面
|
||||
- https://github.com/netxfly/x-proxy //GO.代理蜜罐的开发与应用实战。simple
|
||||
### PC服务蜜罐
|
||||
### 数据库蜜罐
|
||||
- https://gitlab.com/bontchev/elasticpot //py。Elasticsearch数据库蜜罐
|
||||
- https://github.com/hacklcs/HFish //GO.redis\MYSQL\SSH etc 低交护蜜罐。goodjob。
|
||||
- https://github.com/micheloosterhof/cowrie //PY2.使用ELK(ElasticSearch,LogStash,Kibana)进行数据分析,目前支持ssh,telnet,sftp等协议
|
||||
- https://blog.csdn.net/ls1120704214/article/details/88174003 //GO.反击mysql蜜罐。利用MySQL LOCAL INFILE读取客户端文件漏洞分析并使用Golang编写简易蜜罐;从MySQL出发的反击之路;Github:MysqlT,支持大文件无损传输,支持用户验证,支持自定义的 Mysql 版本,随机的盐加密,加上用户验证,让攻击者毫无察觉;Github:Rogue-MySql-Server;--
|
||||
### 供应链蜜罐
|
||||
- http://www.imooc.com/article/26398 //NodeJS 应用仓库钓鱼。同理可应用于python库\apache module 后门等,相关诱饵名称可设置为加解密模块等,或者直接dns劫持。
|
||||
### PC服务蜜罐
|
||||
- https://github.com/micheloosterhof/cowrie //PY2.使用ELK(ElasticSearch,LogStash,Kibana)进行数据分析,目前支持ssh,telnet,sftp等协议蜜罐。
|
||||
- https://github.com/desaster/kippo //PY.蜜罐系统HoneyDrive下的图形化SSH蜜罐。1k。
|
||||
- https://github.com/thinkst/opencanary //PY2.SNMP\RDP\SAMBA蜜罐
|
||||
- https://github.com/gosecure/pyrdp //PY3.RDP MITM蜜罐
|
||||
- https://gosecure.net/2018/12/19/rdp-man-in-the-middle-smile-youre-on-camera/ //INTRO.基于PYRDP,打造可记录图像和按键的RDP蜜罐
|
||||
- https://blog.csdn.net/ls1120704214/article/details/88174003 //GO.反击mysql蜜罐。利用MySQL LOCAL INFILE读取客户端文件漏洞分析并使用Golang编写简易蜜罐;从MySQL出发的反击之路;Github:MysqlT,支持大文件无损传输,支持用户验证,支持自定义的 Mysql 版本,随机的盐加密,加上用户验证,让攻击者毫无察觉;Github:Rogue-MySql-Server
|
||||
- https://github.com/leeberg/BlueHive //PS.利用Active Directory生成用户账户蜜罐
|
||||
- http://www.imooc.com/article/26398 //NodeJS 应用仓库钓鱼。同理可应用于python库\apache module 后门等,相关诱饵名称可设置为加解密模块等,或者直接dns劫持。
|
||||
### 摄像头蜜罐
|
||||
- https://github.com/alexbredo/honeypot-camera //PY.摄像头蜜罐。tornado模拟WEB服务,图片代替视频,可以考虑后期多加点图片和按钮
|
||||
- https://github.com/EasyDarwin/EasyIPCamera //C.RTSP服务器组件用以构建摄像头蜜罐
|
||||
|
||||
15
wiki_vul.md
15
wiki_vul.md
@ -62,6 +62,7 @@
|
||||
- https://www.secpulse.com/archives/18940.html //intro.Web Vulnerability Scanner 8 远程命令执行漏洞。本地使用wscript.shell组件执行命令。
|
||||
- https://bbs.pediy.com/thread-195431.htm //INTRO.Pwn the n00bs - Acunetix 0day。awvs溢出攻击
|
||||
- https://www.anquanke.com/post/id/176379 //INTRO.蚁剑菜刀RCE。蚁剑客户端RCE挖掘过程及源码分析。Electron APP漏洞。
|
||||
- https://www.t00ls.net/articles-56337.html //intro。冰蝎马 那可有可无的密码,冰蝎软件配置漏洞,免密码连接,增添agent头校验。
|
||||
- https://github.com/WyAtu/CVE-2018-20250 //PY.WinRAR压缩包代码执行复现与利用
|
||||
- https://www.bamsoftware.com/hacks/zipbomb/ //ZIPBOMB压缩包炸弹
|
||||
- https://github.com/diafygi/webrtc-ips //利用WebRtc服务获取内外网真实IP。P:whoer.net web应用指纹获取集合;
|
||||
@ -75,15 +76,14 @@
|
||||
- https://github.com/numpy/numpy/issues/12759 //科学计算框架numpy命令执行RCE漏洞
|
||||
- https://github.com/milo2012/CVE-2018-13379 //PY.FortiOS飞塔防火墙/VPN Pre-auth任意文件读取
|
||||
- https://nosec.org/home/detail/2862.html //intro.如何攻击Fortigate SSL VPN
|
||||
- https://windows-internals.com/printdemon-cve-2020-1048/ //打印机欺骗利用打印功能。G:ionescu007/PrintDemon;--
|
||||
- https://windows-internals.com/printdemon-cve-2020-1048/ //欺骗利用打印机服务本地提权。G:ionescu007/PrintDemon;--
|
||||
### 数据库漏洞
|
||||
- https://xz.aliyun.com/t/1491 //Mysql数据库渗透及漏洞利用总结。写shell、udf、mof、注册表、os-shell;
|
||||
- https://www.anquanke.com/post/id/86011 //【技术分享】MSSQL 注入攻击与防御。sql server漏洞利用。
|
||||
- https://github.com/euphrat1ca/CVE-2020-0618 //SQL Server Reporting Services(CVE-2020-0618)利用ysoserial.net命令执行。
|
||||
- https://github.com/oliver006/redis_exporter //GO.redis未授权访问
|
||||
- https://github.com/Ridter/redis-rce //py.A exploit for Redis 4.x/5.x RCE, inspired by Redis post-exploitation.G:n0b0dyCN/redis-rogue-server;G:RicterZ/RedisModules-ExecuteCommand;
|
||||
- https://github.com/t0kx/exploit-CVE-2015-1427 //BASH.Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container远程命令执行
|
||||
- https://www.freebuf.com/vuls/212799.html //MongoDB未授权访问漏洞分析及整改建议
|
||||
- https://github.com/Ridter/redis-rce //py.A exploit for Redis 4.x/5.x RCE, inspired by Redis post-exploitation.G:n0b0dyCN/redis-rogue-server;G:RicterZ/RedisModules-ExecuteCommand;--
|
||||
- https://github.com/t0kx/exploit-CVE-2015-1427 //BASH.Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container远程命令执行。P:CVE-2014-3120 //v1.1.1支持传入动态脚本(MVEL)命令执行;--
|
||||
- https://www.freebuf.com/vuls/212799.html/ //MongoDB未授权访问漏洞分析及整改建议
|
||||
### C#/.Net反序列化漏洞
|
||||
- https://github.com/pwntester/ysoserial.net //C#.配合PowerShell生成有效负载利用
|
||||
@ -221,10 +221,9 @@
|
||||
- https://github.com/danigargu/CVE-2020-0796 //C.CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost RCE&LPE。G:ollypwn/SMBGhost;G:jiansiting/CVE-2020-0796;goodjob。
|
||||
- https://github.com/WindowsExploits/Exploits //微软CVE-2012-0217、CVE-2016-3309、CVE-2016-3371、CVE-2016-7255、CVE-2017-0213利用Windows COM提权。
|
||||
- https://github.com/taviso/ctftool/ //C.利用Windows文本服务框架(TSF)下CTF文本服务协议实现权限提升、沙箱逃逸、读写输入内容等。
|
||||
- https://github.com/SandboxEscaper/polarbearrepo //C++.Win 10计划任务本地权限提升,win server 2016-2019提权
|
||||
- https://github.com/breenmachine/RottenPotatoNG //C++.CVE漏洞编号:CVE-2016-3225;烂土豆ms16-075利用NBNS本地域名欺骗和WPAD代理欺骗提权。
|
||||
- https://github.com/decoder-it/lonelypotato //RottenPotatoNG变种,利用NBNS本地域名欺骗和WPAD代理欺骗提权。G:foxglovesec/Potato;
|
||||
- https://github.com/CCob/SweetPotato //C#.RottenPotatoNG变种烂土豆,利用com对象、用户token进行提权进行Windows 7 to Windows 10 / Server 2019提权。G:ohpe/juicy-potato;
|
||||
- https://github.com/SandboxEscaper/polarbearrepo //C++.Win 10计划任务本地权限提升,win server 2016-2019提权。
|
||||
- https://github.com/breenmachine/RottenPotatoNG //C++.CVE-2016-3225、烂土豆ms16-075,利用NBNS本地域名欺骗和WPAD代理欺骗提权。G:decoder-it/lonelypotato;G:foxglovesec/Potato;G:ohpe/juicy-potato;G:foxglovesec/RottenPotato;--
|
||||
- https://github.com/CCob/SweetPotato //C#.RottenPotatoNG变种烂土豆,利用com对象、用户token进行提权进行Windows 7 to Windows 10 / Server 2019提权。
|
||||
- https://github.com/uknowsec/SweetPotato //C#.烂土豆webshell执行版本。
|
||||
- https://github.com/itm4n/PrintSpoofer //C#。pipePotato基于LOCAL/NETWORK权限利用SeImpersonatePrivilege对win10/Server 2016/server 2019提权。
|
||||
- https://github.com/DanMcInerney/icebreaker //处于内网环境但又在AD环境之外,icebreaker将会帮助你获取明文Active Directory凭据(活动目录存储在域控服务器可用于提权)
|
||||
|
||||
Loading…
Reference in New Issue
Block a user