漏洞报告
【 U.S. Dept Of Defense】Expired SSL Certificate allows credentials steal
https://hackerone.com/reports/1344951
【 U.S. Dept Of Defense】Unauthenticated Access to Admin Panel Functions at xxx
https://hackerone.com/reports/1394910
【 U.S. Dept Of Defense】
Unauthenticated Access to Admin Panel Functions at xxx
https://hackerone.com/reports/1397564
挖洞技巧
A tale of making internet pollution free - BSides Ahmedabad 2021
https://speakerdeck.com/s1r1us/a-tale-of-making-internet-pollution-free-bsides-ahmedabad-2021
挖洞工具
一个辅助平常渗透测试项目或者攻防项目快速打点的综合工具,由之前写的工具AG3改名而来。是一款轻便、小巧、快速、全面的扫描工具。多用于渗透前资产收集和渗透后内网横向渗透。工具从项目上迭代了一些懒人功能(比如提供扫描资产文件中,可以写绝大部分的各种形式的链接/CIDR,并在此基础上可以添加任意端口和路径)
https://github.com/P1-Team/AlliN
Fugu14 is an untethered iOS 14.3-14.5.1 jailbreak
https://github.com/LinusHenze/Fugu14
403/401 Bypass Methods + Bash Automation + Your Support 😉
https://github.com/Dheerajmadhukar/4-ZERO-3
