tuian's Projects
Cobalt strike 修改支持回显中文。
Chrome extension and Express server that exploits keylogging abilities of CSS.
ct
一本 CTF 领域的大杂烩指南
Here records some tips about pwn that I have learned.
Some setup scripts for security research tools.
Attack-Defend CTF Tools
ctf wiki online
a project aim to collect CTF web practices .
Curl Script To Change User Agent
Win32k LPE vulnerability used in APT attack
BSoD PoC for CVE-2016-0051 (MS-016)
Use CVE-2016-3308 corrupt win32k desktop heap
CVE-2017-0199
CVE-2017-11882 Exploit accepts 605 bytes long command/code in maximum.
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
Chrome < 62 uxss exploit (CVE-2017-5124)
CVE-2017-7269 to webshell or shellcode loader
Remote root exploit for the SAMBA CVE-2017-7494 vulnerability
Support x86 and x64
CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
CVE-2018-2893
CVE-2018-8120 Windows LPE exploit
Arbitrary code execution with kernel privileges using CVE-2018-8897.
Command-line utility to scan the system and report on potential vulnerabilities, based on public CVE data
Pilot program for CVE submission through GitHub
Retrieve ConnectWise information into Slack channels and DMs