Send CVE information to the specified mailbox (from Github)
監控Github上的漏洞、紅隊等信息推送釘釘、郵箱、Telegram BOT、Server醬
安裝telegram bot需要的庫:
pip3 install python-telegram-bot
keyword_list = ["免杀", "poc", "cve", "payload", "漏洞利用", "红队", "蓝队", "redteam", "取证", "应急", "后渗透", "内网", "攻防", "网络安全","主机安全", "信息收集", "溯源"]
https://github.com/6613GitHub6613
該項目受https://github.com/yhy0/github-cve-monitor 啓發,做了一點調整。
CVE-2021-26855 PoC for CVE-2021-26855 -Just a checker- Usage python3 CVE-2021-26855.py -u https://mail.example.com -c example.burpcollaborator.net # C
hash-cracker hash cracker is a multi-functional and compact...hash cracking tool...that supports dictionary attacks against three kinds of hashes: md5
FBGen is simple facebook user based wordlist generator using Username/ID and cookie.
python-proxy-server This is a proxy server ❤️ application written in python ❤️ for trial purposes. The purpose of the application; Connecting to Hacke
r2flutch Yet another tool to decrypt iOS apps using r2frida. Requirements It requires to install Frida on the Jailbroken iOS device: Jailbroken device
Cleansweep Requirements A Linux (or Mac OS X) node with the following software installed. Ubuntu 14.04 is preferred. PostgreSQL 9.3 database server Py
sshmap SSH Tool For OSINT and then Cracking. Linux Systems Only Usage: Scanner Syntax: scanner start/stop/status - Sarts/stops/sho
CVE-2021-21086 Exploit This exploit allows to execute a shellcode in the context of the rendering process of Adobe Acrobat Reader DC 2020.013.20074 an
Orthrus is a macOS agent that uses Apple's MDM to backdoor a device using a malicious profile. It effectively runs its own MDM server and allows the operator to interface with it using Mythic.
dos-attacker ❕ Atenção Não ataque sites privados. isto é illegal. 🖥️ Pré-requisitos Ultima versão do Python3. para verificar isto, é bem simples. Bas
CVE-2022-1388 CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE. POST /mgmt/tm/util/bash HTTP/1.1 Host: Accept-Encoding: gzip, deflate Accept: */
GO-WAFW00F 介绍 WAFW00F是一款优秀的web应用防火墙识别开源工具:https://github.com/EnableSecurity/wafw00f 使用Golang重写的原因:Python环境配置不便利,Golang打包生成可执行文件直接运行 目前还在开发阶段,规则解析存在小问题
Introduction evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files. It can process a high numbe
Signalum A Linux Package to detect and analyze existing connections from wifi and bluetooth. Also checkout the Desktop Application. Signalum Installat
PoisonApple Command-line tool to perform various persistence mechanism techniques on macOS. This tool was designed to be used by threat hunters for cy
honeybee-ies Honeybee extension for export a HBJSON file to IES-VE GEM file format Installation pip install honeybee-ies QuickStart import pathlib fro
KCMTicketFormatter This tools takes the output from https://github.com/fireeye/SSSDKCMExtractor and turns it into properly formatted CCACHE files for
mitmproxy mitmproxy is an interactive, SSL/TLS-capable intercepting proxy with a console interface for HTTP/1, HTTP/2, and WebSockets. mitmdump is the
SpaceSiren SpaceSiren is a honey token manager and alert system for AWS. With this fully serverless application, you can create and manage honey token
CVE-2022-22536 SAP memory pipes desynchronization vulnerability(MPI) CVE-2022-22
17 Dec 22, 2022
3 Feb 22, 2022
2 Jul 20, 2022
2 Dec 27, 2021
146 Jan 03, 2023
39 May 24, 2022
5 Apr 04, 2022
23 Nov 09, 2022
37 Dec 06, 2022
10 Apr 15, 2022
81 Dec 12, 2022
80 Dec 30, 2021
116 Dec 29, 2022
56 Mar 03, 2021
212 Dec 29, 2022
4 Jul 12, 2022
35 Oct 25, 2022
29.7k Jan 04, 2023
287 Nov 09, 2022
49 Nov 09, 2022