A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)
A command tool for executing commands in MSSQL using xp_cmdshell and sp_oacreate with various operations.
HTTP 403 bypass tool for penetration testers and bug bounty hunters, allowing for web application security audits.
A proof of concept for exploiting a remote code execution vulnerability in Kingdee ERP systems.
微信小程序辅助渗透-自动化 is an automated tool for assisting penetration testing of WeChat mini programs.
ScopeSentry is a tool for cyberspace mapping, subdomain enumeration, vulnerability scanning, and sensitive information discovery.
A tool for filtering unwanted data by specifying status codes and titles, supporting analysis based on CMS types.
A simple and effective vulnerability management tool supporting local and collaborative modes.
A modified version of the ARL beacon with optimizations and enhancements for improved performance and usability.
A tool for generating fileless Java Agent memory shells for penetration testing and security research.
A tool for traversing storage bucket vulnerabilities efficiently.
A data export tool for browser data including passwords, history, cookies, bookmarks, and download records, supporting major browsers.
