├── .gitattributes
├── Cors
    ├── README.md
    ├── cors.html
    └── cors.php
├── Css_injection
    ├── README.md
    └── cssinjection.php
├── EthFans_vul
    ├── EthFans_vul.py
    └── README.md
├── Hunter_notes
    ├── Bypass to RCE(二).md
    ├── Bypass to RCE.md
    ├── DOM-XSS.md
    ├── Pronhub越权.md
    ├── README.md
    ├── Twitter's HPP.md
    ├── Twitter上传XSS.md
    ├── Uber's XSS三连弹(三).md
    ├── Uber's XSS三连弹(二).md
    ├── Uber‘s XSS三连弹(一).md
    ├── Uber的sql注入.md
    ├── comment的xss.md
    ├── facebook token.md
    ├── hackerone页面篡改.md
    ├── 不走心的参数名.md
    ├── 奖金的升级.md
    ├── 我觉得应该有漏洞.md
    ├── 无良厂商Shopify的Token窃取.md
    ├── 星巴克的跳转xss.md
    ├── 没给钱的CRLF.md
    ├── 独特的XSS.md
    ├── 绕过防御的SSRF.md
    ├── 重定向的token窃取.md
    └── Ｕber的加密不当.md
├── LICENSE
├── Opcode
    ├── OPCODE.html
    └── README.md
├── PostMessage
    ├── README.md
    ├── demo.php
    ├── post.php
    └── server.php
├── README.md
├── burpsuite_extender
    ├── Backslash Powered Scanning
    ├── Burpsuite插件开发.md
    ├── README.md
    ├── passive.py
    ├── passiveScan.py
    └── redirect.py
├── fingerprint
    ├── README.md
    ├── demo.png
    └── demo.py
├── kerberos.docx
├── rand_crack
    ├── README.md
    └── php_rand_crack.md
├── sql-
    ├── 1.png
    ├── 11.png
    ├── 2.png
    ├── 3.png
    ├── 4.png
    ├── 5.png
    ├── 6.png
    ├── 7.png
    ├── 8.jpg
    ├── 8.png
    ├── 9.jpg
    ├── 9.png
    ├── README.md
    └── sql课件.md
└── subdomain_takeover
    ├── README.md
    ├── result.png
    └── subdomian.py


/.gitattributes:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/.gitattributes


--------------------------------------------------------------------------------
/Cors/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Cors/README.md


--------------------------------------------------------------------------------
/Cors/cors.html:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Cors/cors.html


--------------------------------------------------------------------------------
/Cors/cors.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Cors/cors.php


--------------------------------------------------------------------------------
/Css_injection/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Css_injection/README.md


--------------------------------------------------------------------------------
/Css_injection/cssinjection.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Css_injection/cssinjection.php


--------------------------------------------------------------------------------
/EthFans_vul/EthFans_vul.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/EthFans_vul/EthFans_vul.py


--------------------------------------------------------------------------------
/EthFans_vul/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/EthFans_vul/README.md


--------------------------------------------------------------------------------
/Hunter_notes/Bypass to RCE(二).md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Bypass to RCE(二).md


--------------------------------------------------------------------------------
/Hunter_notes/Bypass to RCE.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Bypass to RCE.md


--------------------------------------------------------------------------------
/Hunter_notes/DOM-XSS.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/DOM-XSS.md


--------------------------------------------------------------------------------
/Hunter_notes/Pronhub越权.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Pronhub越权.md


--------------------------------------------------------------------------------
/Hunter_notes/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/README.md


--------------------------------------------------------------------------------
/Hunter_notes/Twitter's HPP.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Twitter's HPP.md


--------------------------------------------------------------------------------
/Hunter_notes/Twitter上传XSS.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Twitter上传XSS.md


--------------------------------------------------------------------------------
/Hunter_notes/Uber's XSS三连弹(三).md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Uber's XSS三连弹(三).md


--------------------------------------------------------------------------------
/Hunter_notes/Uber's XSS三连弹(二).md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Uber's XSS三连弹(二).md


--------------------------------------------------------------------------------
/Hunter_notes/Uber‘s XSS三连弹(一).md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Uber‘s XSS三连弹(一).md


--------------------------------------------------------------------------------
/Hunter_notes/Uber的sql注入.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Uber的sql注入.md


--------------------------------------------------------------------------------
/Hunter_notes/comment的xss.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/comment的xss.md


--------------------------------------------------------------------------------
/Hunter_notes/facebook token.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/facebook token.md


--------------------------------------------------------------------------------
/Hunter_notes/hackerone页面篡改.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/hackerone页面篡改.md


--------------------------------------------------------------------------------
/Hunter_notes/不走心的参数名.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/不走心的参数名.md


--------------------------------------------------------------------------------
/Hunter_notes/奖金的升级.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/奖金的升级.md


--------------------------------------------------------------------------------
/Hunter_notes/我觉得应该有漏洞.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/我觉得应该有漏洞.md


--------------------------------------------------------------------------------
/Hunter_notes/无良厂商Shopify的Token窃取.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/无良厂商Shopify的Token窃取.md


--------------------------------------------------------------------------------
/Hunter_notes/星巴克的跳转xss.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/星巴克的跳转xss.md


--------------------------------------------------------------------------------
/Hunter_notes/没给钱的CRLF.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/没给钱的CRLF.md


--------------------------------------------------------------------------------
/Hunter_notes/独特的XSS.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/独特的XSS.md


--------------------------------------------------------------------------------
/Hunter_notes/绕过防御的SSRF.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/绕过防御的SSRF.md


--------------------------------------------------------------------------------
/Hunter_notes/重定向的token窃取.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/重定向的token窃取.md


--------------------------------------------------------------------------------
/Hunter_notes/Ｕber的加密不当.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Hunter_notes/Ｕber的加密不当.md


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/LICENSE


--------------------------------------------------------------------------------
/Opcode/OPCODE.html:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Opcode/OPCODE.html


--------------------------------------------------------------------------------
/Opcode/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/Opcode/README.md


--------------------------------------------------------------------------------
/PostMessage/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/PostMessage/README.md


--------------------------------------------------------------------------------
/PostMessage/demo.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/PostMessage/demo.php


--------------------------------------------------------------------------------
/PostMessage/post.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/PostMessage/post.php


--------------------------------------------------------------------------------
/PostMessage/server.php:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/PostMessage/server.php


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/README.md


--------------------------------------------------------------------------------
/burpsuite_extender/Backslash Powered Scanning:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/Backslash Powered Scanning


--------------------------------------------------------------------------------
/burpsuite_extender/Burpsuite插件开发.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/Burpsuite插件开发.md


--------------------------------------------------------------------------------
/burpsuite_extender/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/README.md


--------------------------------------------------------------------------------
/burpsuite_extender/passive.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/passive.py


--------------------------------------------------------------------------------
/burpsuite_extender/passiveScan.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/passiveScan.py


--------------------------------------------------------------------------------
/burpsuite_extender/redirect.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/burpsuite_extender/redirect.py


--------------------------------------------------------------------------------
/fingerprint/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/fingerprint/README.md


--------------------------------------------------------------------------------
/fingerprint/demo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/fingerprint/demo.png


--------------------------------------------------------------------------------
/fingerprint/demo.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/fingerprint/demo.py


--------------------------------------------------------------------------------
/kerberos.docx:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/kerberos.docx


--------------------------------------------------------------------------------
/rand_crack/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/rand_crack/README.md


--------------------------------------------------------------------------------
/rand_crack/php_rand_crack.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/rand_crack/php_rand_crack.md


--------------------------------------------------------------------------------
/sql-/1.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/1.png


--------------------------------------------------------------------------------
/sql-/11.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/11.png


--------------------------------------------------------------------------------
/sql-/2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/2.png


--------------------------------------------------------------------------------
/sql-/3.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/3.png


--------------------------------------------------------------------------------
/sql-/4.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/4.png


--------------------------------------------------------------------------------
/sql-/5.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/5.png


--------------------------------------------------------------------------------
/sql-/6.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/6.png


--------------------------------------------------------------------------------
/sql-/7.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/7.png


--------------------------------------------------------------------------------
/sql-/8.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/8.jpg


--------------------------------------------------------------------------------
/sql-/8.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/8.png


--------------------------------------------------------------------------------
/sql-/9.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/9.jpg


--------------------------------------------------------------------------------
/sql-/9.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/9.png


--------------------------------------------------------------------------------
/sql-/README.md:
--------------------------------------------------------------------------------
1 | # sql-
2 | 关于sql注入的很粗略的个人理解
3 | 
4 | 如果有什么不对的地方，请积极留言
5 | 请勿用此资料赚取金钱
6 | 


--------------------------------------------------------------------------------
/sql-/sql课件.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/sql-/sql课件.md


--------------------------------------------------------------------------------
/subdomain_takeover/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/subdomain_takeover/README.md


--------------------------------------------------------------------------------
/subdomain_takeover/result.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/subdomain_takeover/result.png


--------------------------------------------------------------------------------
/subdomain_takeover/subdomian.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/g0dA/PenetrationStack/HEAD/subdomain_takeover/subdomian.py


--------------------------------------------------------------------------------