mirror of
https://github.com/euphrat1ca/Security-List.git
synced 2026-06-30 21:09:51 +08:00
281
281
This commit is contained in:
parent
bd072fb7e3
commit
edb52ba0b7
@ -78,7 +78,6 @@
|
||||
- https://github.com/ThatcherDev/BetterBackdoor //JAVA.基于jre环境的跨平台后门,支持键盘注入功能。testjob.
|
||||
### 多姿态远控shell
|
||||
- https://blog.csdn.net/Fly_hps/ //隐匿攻击,FLy_鹏程万里【基础篇】 ICMP/DNS/DropBox/Office 365/mail/app/webSocketSiteKeywordDomainApi/PS/WindowsDomWmi/webDav/https/images/JS/Proxy etc…
|
||||
- https://github.com/knownsec/KCon/blob/master/2018/25日/25日No.4-PLC远控-剑.pdf/ //写入西门子FC块端口复用,用于反向代理接管操作设备,工控木马plc远控
|
||||
- https://github.com/ZHacker13/ReverseTCPShell //PS.对tcp流量进行aes加密,增强版NC。G:sweetsoftware/Ares;G:5alt/ZeroRAT;--
|
||||
- https://github.com/0nise/shell-plus //Java.基于 RMI 的一款服务器管工具,由服务端、注册中心、客户端进行组成。
|
||||
- https://github.com/inquisb/icmpsh //C.Simple reverse ICMP shell。Github:PiX-C2;--
|
||||
|
||||
@ -70,12 +70,15 @@
|
||||
- https://github.com/moki-ics/moki //一键配置类似于kali的工控渗透测试系统的脚本
|
||||
- https://github.com/SadFud/Exploits //PY/BASH.PWN利用框架 CTFs exploit POCs.工控漏洞POC
|
||||
- https://gitlab.com/expliot_framework/expliot //PY3.工控安全漏洞测试框架
|
||||
- https://github.com/dark-lbp/isf //PY2.基于routersploit基础开发的ISF(Industrial Control System Exploitation Framework)。
|
||||
- https://github.com/w3h/isf //py2.基于Fuzzbunch命令行基础开发的工控测试框架。工匠实验室。
|
||||
- https://github.com/dark-lbp/isf //PY2.基于routersploit框架开发的ISF(Industrial Control System Exploitation Framework)。
|
||||
- https://github.com/w3h/isf //py2.基于NSA工具Fuzzbunch攻击框架开发的工控测试框架。工匠实验室。
|
||||
- https://dragos.com/community-tools/ //工业网络安全公司 Dragos Inc.发布的Integrity(Sophia)被动ICS网络资产发现,CyberLens关于ICS数据包处理\捕获\可视化显示。
|
||||
- https://github.com/nsacyber/GRASSMARLIN //SA 开发的工控 ICS/SCADA 态势感知开源工具。
|
||||
- https://github.com/digitalbond/Redpoint //ICS识别所用nse脚本
|
||||
- https://github.com/XHermitOne/icscanner //界面化ics扫描器
|
||||
### ICS代理转发远程访问
|
||||
- https://github.com/knownsec/KCon/blob/master/2018/25日/25日No.4-PLC远控-剑.pdf/ //写入西门子FC块端口复用,用于反向代理接管操作设备,工控木马plc远控
|
||||
- http://www.icsmaster.org/archives/ics/690/ //通过Siemens1200 Tsend和Trev模块实现socket代理功能
|
||||
### 工控协议
|
||||
- https://www.freebuf.com/articles/ics-articles/167079.html //深度解析工控网络流量特点
|
||||
### ics 西门子S7安全
|
||||
|
||||
@ -31,9 +31,9 @@
|
||||
- https://github.com/euphrat1ca/OtherScript/blob/master/coremail_vul_check.sh //coremail配置文件泄露导致用户导出/资产泄露/邮件伪造发送
|
||||
- https://github.com/dpu/coremail-address-book/ /go。Coremail邮件系统组织通讯录导出脚本
|
||||
- https://slides.com/securitymb/prototype-pollution-in-kibana#/ //kibana <6.6.0 未授权远程代码命令执行。Kibana CVE-2019-7609 RCE Exploit
|
||||
- https://github.com/jas502n/fastjson-RCE //fastjson-v1.2.47-RCE 命令执行漏洞
|
||||
- https://www.corben.io/atlassian-crowd-rce/ //JAVA.atlassian crowd,CVE-2019-11580.
|
||||
- https://github.com/c0d3p1ut0s/CVE-2019-12086-jackson-databind-file-read //CVE-2019-12086.利用jackson进行MySQL服务器任意文件读取漏洞
|
||||
- https://github.com/wyzxxz/fastjson_rce_tool //java。fastjson-v1.2.47-RCE命令执行利用工具。G:jas502n/fastjson-RCE;--
|
||||
- https://www.corben.io/atlassian-crowd-rce/ //JAVA.atlassian crowd,CVE-2019-11580。
|
||||
- https://github.com/c0d3p1ut0s/CVE-2019-12086-jackson-databind-file-read //CVE-2019-12086。利用jackson进行MySQL服务器任意文件读取漏洞
|
||||
### thinkphp漏洞
|
||||
- https://github.com/SkyBlueEternal/thinkphp-RCE-POC-Collection //thinkphp v5.x 远程代码执行漏洞-POC集合
|
||||
- https://github.com/Lucifer1993/TPscan /PY3.thinkphp漏洞检测,已支持2019.
|
||||
@ -84,6 +84,7 @@
|
||||
- https://www.anquanke.com/post/id/86011 //【技术分享】MSSQL 注入攻击与防御。sql server漏洞利用。
|
||||
- https://github.com/euphrat1ca/CVE-2020-0618 //SQL Server Reporting Services(CVE-2020-0618)利用ysoserial.net命令执行。
|
||||
- https://github.com/oliver006/redis_exporter //GO.redis未授权访问,主从复制写shell。
|
||||
- https://github.com/r35tart/RedisWriteFile //PY.通过 Redis 主从写出无损文件,可以写系统执行文件,也可以用无杂质覆写 Linux 中的 /etc/shadow。
|
||||
- https://github.com/Dliv3/redis-rogue-server //Redis 4.x/Redis 5.x RCE利用脚本,附带可利用so文件。G:Ridter/redis-rce;G:RicterZ/RedisModules-ExecuteCommand;--
|
||||
- https://github.com/t0kx/exploit-CVE-2015-1427 //BASH.Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container远程命令执行。P:CVE-2014-3120 //v1.1.1支持传入动态脚本(MVEL)命令执行;--
|
||||
- https://www.freebuf.com/vuls/212799.html/ //MongoDB未授权访问漏洞分析及整改建议
|
||||
|
||||
@ -161,10 +161,10 @@ G:timwhitez/crawlergo_x_XRAY;W:xz.aliyun.com/t/7047;--
|
||||
- https://xsspt.com/index.php?do=blist //乌云xss学习
|
||||
- https://github.com/UltimateHackers/AwesomeXSS //XSS Awesome系列
|
||||
- http://www.xss-payloads.com //xss工具包、资料、payload导航站
|
||||
- https://portswigger.net/web-security/cross-site-scripting/cheat-sheet //跨站脚本(XSS)备忘录,收集了大量的XSS攻击向量,包含了各种事件处理、通讯协议、特殊属性、限制字符、编码方式、沙箱逃逸等技巧
|
||||
- https://www.slideshare.net/GarethHeyes/xss-magic-tricks //burpsuite团队总结xss知识点。
|
||||
- https://portswigger.net/web-security/cross-site-scripting/cheat-sheet //跨站脚本(XSS)备忘录,收集了大量的XSS攻击向量,包含了各种事件处理、通讯协议、特殊属性、限制字符、编码方式、沙箱逃逸等技巧。
|
||||
- https://github.com/heroanswer/XSS_Cheat_Sheet_2020_Edition //XSS Payload,使用场景。goodjob。G:ismailtasdelen/xss-payload-list;--
|
||||
- https://somdev.me/21-things-xss/ //XSS的21个扩展用途
|
||||
- https://www.slideshare.net/GarethHeyes/xss-magic-tricks //burpsuite团队总结xss知识点
|
||||
- https://github.com/ismailtasdelen/xss-payload-list //XSS 漏洞Payload列表
|
||||
- https://github.com/NytroRST/XSSFuzzer //根据特定标签生成xss payload
|
||||
- https://github.com/evilcos/xssor2 //xss利用辅助工具。余弦
|
||||
### XSS检测辅助
|
||||
|
||||
@ -1,19 +1,23 @@
|
||||
# Fuzzer模糊测试
|
||||
- 工控模糊测试Wurldtech Achilles阿基里斯国际认证
|
||||
- LLVM工具链,基于编译器插桩的coverage-feedback driven fuzzer
|
||||
- https://mp.weixin.qq.com/s/nREiT1Uj25igCMWu1kta9g //Fuzzing战争: 从刀剑弓斧到星球大战。 Flanker论安全
|
||||
## 模糊测试数据资料
|
||||
- http://www.freebuf.com/articles/rookie/169413.html //一系列用于Fuzzing学习的资源汇总
|
||||
- https://github.com/secfigo/Awesome-Fuzzing //Fuzzing模糊测试相关学习资料
|
||||
- https://github.com/fuzzdb-project/fuzzdb //fuzz资料数据库
|
||||
- https://github.com/raminfp/linux_exploit_development //linux漏洞利用开发手册
|
||||
- https://github.com/mozillasecurity/fuzzdata //
|
||||
- https://github.com/mozillasecurity/fuzzdata //模糊测试输入样本资源
|
||||
## 模糊测试框架工具
|
||||
- https://google.github.io/clusterfuzz/ //谷歌集群模糊测试平台
|
||||
- https://github.com/google/oss-fuzz //C。谷歌对开源项目的进行免费的模糊测试服务
|
||||
- https://github.com/googleprojectzero/winafl //C.Google Project Zero 基于Windows AFL开发的模糊测试框架。原创技术分析-AFL漏洞挖掘技术漫谈
|
||||
- http://zeroyu.xyz/2019/05/15/how-to-use-afl-fuzz/ //intro.AFL使用指南
|
||||
- https://github.com/mxmssh/drAFL //C.Linux模糊测试。G:atrosinenko/kbdysch;G:google/oss-fuzz;
|
||||
- https://github.com/zyw-200/FirmAFL //C.针对iot固件IoT firmware灰盒模糊测试
|
||||
- https://www.peach.tech/ //C#.Peach3,网络协议、API、文件格式模糊测试。G:TideSec/Peach_Fuzzing;
|
||||
- https://www.peach.tech/ //C#.Peach3模板流(通过提前定义好的xml等文件模板对目标单位进行测试)模糊测试,网络协议、API、文件格式模糊测试。G:TideSec/Peach_Fuzzing;--
|
||||
- https://github.com/MozillaSecurity/peach //PY3.MozPeach是Peach v2.7的一个分支,由Mozilla Security维护。
|
||||
- https://mp.weixin.qq.com/s/yYkbysywQXD5l-SS0jQ3_A //intro.使用Peach进行模糊测试从入门到放弃。P:【工控安全】基于Peach的Modbus协议模糊测试;
|
||||
- https://mp.weixin.qq.com/s/yYkbysywQXD5l-SS0jQ3_A //intro.使用Peach进行模糊测试从入门到放弃。P:【工控安全】基于Peach的Modbus协议模糊测试;--
|
||||
- https://github.com/cisco-sas/kitty //PY.针对TCP/IP的模糊测试框架。goodjob
|
||||
- https://kitty.readthedocs.io/en/latest/ //intro.kitty使用手册
|
||||
- https://github.com/cisco-sas/katnip //PY.kitty框架的拓展库
|
||||
|
||||
Loading…
Reference in New Issue
Block a user