Skip to content
View f0ng's full-sized avatar
🤗
happy
🤗
happy
718 followers · 120 following

Achievements

Achievement: Pull SharkAchievement: QuickdrawAchievement: Starstruckx3Achievement: Arctic Code Vault Contributor
BetaSend feedback

Achievements

Achievement: Pull SharkAchievement: QuickdrawAchievement: Starstruckx3Achievement: Arctic Code Vault Contributor
BetaSend feedback

Highlights

Block or Report

Block or report f0ng

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
f0ng/README.md

blog: f0ng.github.io

微信公众号(Official Wechat): only security

欢迎交流探讨网络安全!

喜欢对漏洞自动化检测进行思考,并开发插件,以及研究感兴趣的方向

目前主要兴趣在挖掘SRC、漏洞检测、漏洞复现以及攻防实战

image

image

Lang

Pinned

  1. captcha-killer-modified captcha-killer-modified Public

    captcha-killer的修改版,支持关键词识别base64编码的图片,添加免费ocr库,用于验证码爆破,适配新版Burpsuite

    Java 1.2k 129

  2. autoDecoder autoDecoder Public

    Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。

    Java 811 65

  3. log4j2burpscanner log4j2burpscanner Public

    CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

    Java 777 112

  4. poc2jar poc2jar Public

    Java编写,Python作为辅助依赖的漏洞验证、利用工具,添加了进程查找模块、编码模块、命令模块、常见漏洞利用GUI模块、shiro rememberMe解密模块,加快测试效率

    Java 676 105

  5. selistener selistener Public

    用于解决判断出网情况的问题,以http、ldap、rmi以及socket形式批量监听端口,在web界面进行结果查看

    Go 113 15

  6. autoDecoder-usages autoDecoder-usages Public

    autoDecoder的用法及案例,包含加解密方法、绕waf、替换参数等操作。

    Python 163 18