George-boop-svg / Chinese-hackers-use-WPS-to-attackView external linksLinks
WPS 0day.hen the wps software is running, an api interface with port 4709 will be opened. An attacker can request this interface to execute commands.
☆99Aug 26, 2024Updated last year
Alternatives and similar repositories for Chinese-hackers-use-WPS-to-attack
Users that are interested in Chinese-hackers-use-WPS-to-attack are comparing it to the libraries listed below
Sorting:
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- My security presentations☆29Aug 21, 2023Updated 2 years ago
- 通杀检测基于白文件patch黑代码的免杀技术的后门☆181Aug 3, 2024Updated last year
- pdf exploit 集成☆245Jul 19, 2024Updated last year
- ☆158Jul 10, 2024Updated last year
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆24May 10, 2021Updated 4 years ago
- ownCloud exploits for CVE-2023-49105☆36Dec 5, 2023Updated 2 years ago
- rce☆140Jun 15, 2023Updated 2 years ago
- 一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.☆560May 30, 2025Updated 8 months ago
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- 通过Dump内存读取ToDesk设备代码、连接密码☆244Sep 9, 2024Updated last year
- ☆35Sep 2, 2024Updated last year
- ☆79Nov 22, 2024Updated last year
- 重构Beacon☆164Aug 19, 2024Updated last year
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆294Apr 21, 2025Updated 9 months ago
- LC(List Cloud)是一个多云攻击面资产梳理工具☆633Oct 6, 2024Updated last year
- EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate end…☆79Nov 8, 2024Updated last year
- 一键生成免杀木马☆27Feb 12, 2025Updated last year
- 互联网数字垃圾回收专用废纸篓☆62Jan 23, 2024Updated 2 years ago
- ☆95Nov 26, 2022Updated 3 years ago
- AI 生成☆47Jul 30, 2025Updated 6 months ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021☆270Jun 6, 2025Updated 8 months ago
- java-web 自动化鉴权绕过☆376Apr 3, 2025Updated 10 months ago
- WPS Office RCE On 2023-08-10☆257Aug 11, 2023Updated 2 years ago
- 添加计划任务方法集合☆309Aug 6, 2023Updated 2 years ago
- 亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用☆120Aug 9, 2024Updated last year
- A Post Exploitation Tool for High Value Systems☆291Jun 17, 2024Updated last year
- 基于 OPSEC 的 CobaltStrike 后渗透自动化链☆451Mar 11, 2024Updated last year
- AutoGeaconC2: 一键读取Profile自动化生成geacon实现跨平台上线CobaltStrike☆143Apr 7, 2024Updated last year
- IDEA代码审计辅助插件(深信服深蓝实验室天威战队强力驱动)☆580Mar 10, 2025Updated 11 months ago
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆546Dec 7, 2025Updated 2 months ago
- 创建隐藏计划任务,权限维持,Bypass AV☆556Sep 1, 2021Updated 4 years ago
- [漏洞复现] 全球首款单文件利用 CVE-2023-4357 Chrome XXE 漏洞 EXP, 实现对访客者本地文件窃取. Chrome XXE vulnerability EXP, allowing attackers to obtain local files of…☆227Apr 4, 2025Updated 10 months ago
- RPC远程主机信息匿名扫描工具☆317Sep 30, 2022Updated 3 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- druid数据库密码解密☆37Apr 7, 2023Updated 2 years ago
- 内网资 产收集、探测主机存活、端口扫描、域控定位、文件搜索、各种服务爆破(SSH、SMB、MsSQL等)、Socks代理,一键自动化+无文件落地扫描☆470Nov 20, 2024Updated last year
- 通过 Redis 主从写出无损文件☆719May 25, 2020Updated 5 years ago