H4ckForJob

😀

I may be slow to respond.

h4ckforfun H4ckForJob

😀

I may be slow to respond.

= - =

436 followers · 74 following

Achievements

dirmap Public

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

scanner dirscanner pentest-tool scanner-web

Python 3,342 559 GNU General Public License v3.0 Updated Oct 21, 2025
h4ckforjob.github.io Public

my blog

HTML Updated Oct 15, 2025
redis_exploit Public
Forked from raminfp/redis_exploit

CVE-2025-49844 (RediShell)

Python 1 Updated Oct 7, 2025
win2008r2x64Patch Public

win2008r2x64 的 KB4490628、KB4474419补丁

Updated Oct 3, 2025
webSecuritySummary Public

web安全总结

4 GNU General Public License v3.0 Updated Aug 18, 2023
BehinderClientSource Public
Forked from MountCloud/BehinderClientSource

❄️冰蝎客户端源码-V4.0.6🔞

Java Updated Feb 28, 2023
testgit Public

Updated Jul 17, 2022
H4ckForJob Public

whoami

Updated Mar 31, 2022
EmailAll Public
Forked from Taonn/EmailAll

EmailAll is a powerful Email Collect tool — 一款强大的邮箱收集工具

Python 18 3 Updated Feb 19, 2022
JNDIMonitor Public
Forked from r00tSe7en/JNDIMonitor

一个LDAP请求监听器，摆脱dnslog平台

Java 1 Updated Dec 16, 2021
Riru Public
Forked from RikkaApps/Riru

Inject into zygote process

C++ Updated Dec 16, 2021
DNSLog-Platform-Golang Public
Forked from yumusb/DNSLog-Platform-Golang

DNSLOG平台 golang 一键启动版

Go 2 Updated Dec 14, 2021
JNDIExploit-1 Public
Forked from Mr-xn/JNDIExploit-1

一款用于 JNDI注入利用的工具，大量参考/引用了 Rogue JNDI 项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。（from https://github.com/feihong-cs/JNDIExploit）

Java 1 1 Updated Dec 13, 2021
CVE-2021-44228-Apache-Log4j-Rce Public
Forked from y35uishere/apache-log4j-poc

Apache Log4j 远程代码执行

Java 1 Updated Dec 13, 2021
BurpFastJsonScan Public
Forked from pmiaowu/BurpFastJsonScan

一款基于BurpSuite的被动式FastJson检测插件

Java 2 2 Updated Dec 13, 2021
Log4j2-CVE-2021-44228 Public
Forked from jas502n/Log4j2-CVE-2021-44228

Remote Code Injection In Log4j

Updated Dec 13, 2021
cloudrasp-log4j2 Public
Forked from boundaryx/cloudrasp-log4j2

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

Java Updated Dec 10, 2021
JNDIExploit-2 Public
Forked from Jeromeyoung/JNDIExploit-1

一款用于JNDI注入利用的工具，大量参考/引用了Rogue JNDI项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。

Java 1 2 Updated Oct 22, 2021
kingkong Public

解密哥斯拉webshell管理工具流量

Python 76 14 Updated Apr 14, 2021
DNSlog-GO Public
Forked from lanyi1998/DNSlog-GO

DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具，自带WEB界面

HTML MIT License Updated Mar 12, 2021
CVE-2021-1732-Exploit Public
Forked from KaLendsi/CVE-2021-1732-Exploit

CVE-2021-1732 Exploit

C++ Updated Mar 5, 2021
JNDI-Injection-Bypass Public
Forked from welk1n/JNDI-Injection-Bypass

Some payloads of JNDI Injection in JDK 1.8.0_191+

Java Updated Dec 9, 2020
bypasswaf Public
Forked from pureqh/bypasswaf

关于安全狗和云锁的自动化绕过脚本

Python 1 1 Updated Aug 29, 2020
CVE-2019-0887 Public
Forked from qianshuidewajueji/CVE-2019-0887

C++ Updated Jul 19, 2020
CVE-2020-9484 Public
Forked from seanachao/CVE-2020-9484

利用ceye批量检测CVE-2020-9484

Python 2 3 Updated May 21, 2020
BadPotato Public
Forked from BeichenDream/BadPotato

Windows 权限提升 BadPotato

C# 1 Updated May 10, 2020
ShiroScan Public
Forked from sv3nbeast/ShiroScan

Shiro<=1.2.4反序列化，一键检测工具

Python 2 1 Updated Mar 29, 2020
mimiremote Public
Forked from mabangde/mimiremote

C++ 1 Updated Mar 26, 2020
cve-2020-0688 Public
Forked from Ridter/cve-2020-0688

cve-2020-0688

Python 1 1 Updated Feb 27, 2020
learnjavabug Public
Forked from threedr3am/learnjavabug

Java安全相关的漏洞和技术demo，其中包括原生Java、Fastjson、Jackson、Hessian2以及XML反序列化漏洞利用和Dubbo（Hessian2反序列化）、Shiro（PaddingOracleCBC）等框架的exploits，并且还有Java Security Manager绕过、Dubbo-Hessian2安全加固、RMI利用等等实践代码。

Java 1 Updated Feb 20, 2020

h4ckforfun H4ckForJob

Achievements

Achievements

dirmap Public

Uh oh!

h4ckforjob.github.io Public

Uh oh!

redis_exploit Public

Uh oh!

win2008r2x64Patch Public

Uh oh!

webSecuritySummary Public

Uh oh!

BehinderClientSource Public

Uh oh!

testgit Public

Uh oh!

H4ckForJob Public

Uh oh!

EmailAll Public

Uh oh!

JNDIMonitor Public

Uh oh!

Riru Public

Uh oh!

DNSLog-Platform-Golang Public

Uh oh!

JNDIExploit-1 Public

Uh oh!

CVE-2021-44228-Apache-Log4j-Rce Public

Uh oh!

BurpFastJsonScan Public

Uh oh!

Log4j2-CVE-2021-44228 Public

Uh oh!

cloudrasp-log4j2 Public

Uh oh!

JNDIExploit-2 Public

Uh oh!

kingkong Public

Uh oh!

DNSlog-GO Public

Uh oh!

CVE-2021-1732-Exploit Public

Uh oh!

JNDI-Injection-Bypass Public

Uh oh!

bypasswaf Public

Uh oh!

CVE-2019-0887 Public

Uh oh!

CVE-2020-9484 Public

Uh oh!

BadPotato Public

Uh oh!

ShiroScan Public

Uh oh!

mimiremote Public

Uh oh!

cve-2020-0688 Public

Uh oh!

learnjavabug Public

Uh oh!