xidaner / Freed0mView external linksLinks
个人学习笔记,多少有借鉴。请谅解。博客主页:
☆266Jul 27, 2023Updated 2 years ago
Alternatives and similar repositories for Freed0m
Users that are interested in Freed0m are comparing it to the libraries listed below
Sorting:
- WEB安全手册(红队安全技能栈),漏洞理解,漏洞利用,代码审计和渗透测试总结。【持续更新】☆1,888Nov 7, 2025Updated 3 months ago
- Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.☆1,072Jan 9, 2023Updated 3 years ago
- 用于记录内网渗透(域渗透)学习 :-)☆1,235Nov 9, 2020Updated 5 years ago
- 红队笔记☆2,118Apr 11, 2024Updated last year
- Redis 漏洞利用工具☆938Jan 26, 2025Updated last year
- Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含☆249Nov 15, 2022Updated 3 years ago
- 关于红队方面的学习资料☆1,452Jan 3, 2024Updated 2 years ago
- Nacos Derby命令执行漏洞利用脚本☆151Apr 7, 2025Updated 10 months ago
- 就是一个练习Java反序列化的最简单环境☆14Dec 24, 2021Updated 4 years ago
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆858Aug 30, 2023Updated 2 years ago
- 红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool☆2,082Jan 27, 2026Updated 2 weeks ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- 收集内存马打入方式☆506May 20, 2022Updated 3 years ago
- 用于生成各类免杀webshell☆1,280Jan 8, 2026Updated last month
- 基于Agent技术实现的Java内存马查杀、防护工具。☆94Jul 25, 2024Updated last year
- Red Tools 渗透测试☆584Jul 7, 2022Updated 3 years ago
- 渗透测试常规操作记录☆4,041May 22, 2023Updated 2 years ago
- ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup☆5,647Jun 6, 2024Updated last year
- Burp插件,快速探测可能存在SQL注入的请求并标记,提高测试效率☆741Dec 24, 2025Updated last month
- 面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams☆1,991Feb 3, 2026Updated last week
- 红方人员作战执行手册☆499Feb 26, 2020Updated 5 years ago
- 项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。☆1,898Jan 15, 2024Updated 2 years ago
- Java漏洞学习笔记 Deserialization Vulnerability☆945Jun 14, 2023Updated 2 years ago
- ☆523Sep 16, 2022Updated 3 years ago
- 收集的文章 https://mrwq.github.io/tools/paper/☆2,009Dec 8, 2025Updated 2 months ago
- LSTAR - CobaltStrike 综合后渗透插件☆1,262Jan 30, 2022Updated 4 years ago
- 云资产管理工具 目前工具定位是云安全相关工具,目前是两个模块 云存储工具、云服务工具, 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理,查看、执行命令、接管等等☆1,135Nov 28, 2024Updated last year
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆447Sep 10, 2023Updated 2 years ago
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)☆2,199Jul 25, 2023Updated 2 years ago
- ☆2,277Jan 17, 2025Updated last year
- FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本),主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用☆1,180Jul 12, 2024Updated last year
- T Wiki 云安全知识文库,可能是国内首个云安全知识文库?☆1,033Dec 21, 2024Updated last year
- Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。☆2,028Jul 21, 2023Updated 2 years ago
- 基于Burp插件开发打造渗透测试自动化☆422Dec 7, 2021Updated 4 years ago
- Eeyes(棱眼)-快速筛选真实IP并整理为C段☆601Apr 4, 2021Updated 4 years ago
- OneScan 是一款用于递归目录扫描的 BurpSuite 插件☆1,229Jun 24, 2025Updated 7 months ago
- 一款基于BurpSuite的被动式shiro检测插件☆1,790Dec 14, 2022Updated 3 years ago
- 一个开源的、开箱即用的漏洞批量验证框架☆901Oct 24, 2025Updated 3 months ago