Stars
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
基于W01fh4cker大佬的LearnJavaMemshellFromZero从零掌握java内存马的复现重组版本。
Ridter / CS-EXTC2-ICMP
Forked from ryanq47/CS-EXTC2-ICMPAn ICMP channel for Beacons, implemented using Cobalt Strike’s External C2 framework.
Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
wspcoerce coerces a Windows computer account via SMB to an arbitrary target using MS-WSP
PoC Exploit for the NTLM reflection SMB flaw.
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
JavaSecLab is a comprehensive Java vulnerability platform| JavaSecLab是一款综合型Java漏洞平台,提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范,覆盖多种漏洞场景,友好用户交互UI……
用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
the free firefox extions of hackbar v2.1.3 v2.2.9 v2.3.1,hackbar 插件未收费的免费版本。适用于chrome浏览器的HackBar-v2.2.6.zip,HackBar-v2.3.1.zip
DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
The first Computer Emergency Response (ARK) Tools for young people ;) 年轻人的第一款应急响应(ARK)工具 ;)
Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analysis in Neo4j, offering an alternative approach to tools like …
Robust Cobalt Strike shellcode loader with multiple advanced evasion features
A BOF to create a scheduled task using a COM object.
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Exploitation Techniques Revealed" - Research Summary Project