王炳乐's Projects
CodeQL Java 全网最全的中文学习资料
LIEF - Library to Instrument Executable Formats
Digital logic design tool and simulator
为了方便Mac用户参与渗透工作而创建的项目
Guide to securing and improving privacy on macOS
MacOS-Utils
基于marpit的PPT制作展示
bypass AV生成工具,目前免杀效果不是很好了,但是过个360,火绒啥的没问题
Metasploit Framework
各种安全相关思维导图整理收集
漏洞监控平台——Monitor。目前实现了监控GitHub、微软、CNNVD三者的漏洞信息,并使用企业微信实时推送。还可以使用邮箱推送,默认关闭。
监控 MySQL 实时打印执行语句 🤖️
MySQL实时监控工具(代码审计/黑盒/白盒审计辅助工具)
A major platform RAT Tool based by Blockchain/P2P.Now support Windows/Linux/MacOS
PasteEasy Feedback
The Swiss Army Knife of Screen Annotation Tools
一些渗透姿势记录
PicGo loading Picture
Used for n describing the Github project
golang + RaspberryPi 实现可控制的WEB视频监控器🕹
整理一些内网常用渗透小工具
Mimikatz implementation in pure Python
一个漏洞扫描器粘合剂,添加目标后30款工具自动调用;支持 web扫描、系统扫描、子域名收集、目录扫描、主机扫描、主机发现、组件识别、URL爬虫、XRAY扫描、AWVS自动扫描、POC批量验证,SSH批量测试、vulmap。
QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into accounts which aims for hijacking users session by attackers.
Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
OpenSource Poc && Vulnerable-Target Storage Box.
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
关于红队方面的一些工具\资料\Checklist
RedTeaming知识星球2020年安全知识汇总
记录自己编写、修改的部分工具