0x7b

0x7b's Stars

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python62.4k1.8k014.9k

• ehang-io/nps

  一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.

  Language:Go31.1k4661.2k5.6k

• jpillora/chisel

  A fast TCP/UDP tunnel over HTTP

  Language:Go14k2043341.4k

• fortra/impacket

  Impacket is a collection of Python classes for working with network protocols.

  Language:Python13.8k3779653.6k

• nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

  A list of resources for those interested in getting started in bug bounties

  10.9k574271.9k

• BloodHoundAD/BloodHound

  Six Degrees of Domain Admin

  Language:PowerShell10k3785121.7k

• fsnotify/fsnotify

  Cross-platform filesystem notifications for Go.

  Language:Go9.7k151376922

• rubyhan1314/Golang-100-Days

  Golang - 100天从新手到大师

  Language:Smarty5.9k169251.8k

• LandGrey/SpringBootVulExploit

  SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

  Language:Java5.8k9981.3k

• knownsec/KCon

  KCon is a famous Hacker Con powered by Knownsec Team.

  Language:JavaScript4.6k48161.4k

• misterch0c/shadowbroker

  The Shadow Brokers "Lost In Translation" leak

  Language:Python4.2k43826507

• bluscreenofjeff/Red-Team-Infrastructure-Wiki

  Wiki to collect Red Team infrastructure hardening resources

  4.2k2117906

• 0x727/ShuiZe_0x727

  信息收集自动化工具

  Language:Python3.8k45173576

• FunnyWolf/Viper

  Attack Surface Management & Red Team Simulation Platform 互联网攻击面管理&红队模拟平台

  3.8k54227532

• tarunkant/Gopherus

  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

  Language:Python2.9k2216375

• assetnote/kiterunner

  Contextual Content Discovery Tool

  Language:Go2.7k3948304

• aleenzz/Cobalt_Strike_wiki

  Cobalt Strike系列

  2.3k486588

• knownsec/shellcodeloader

  shellcodeloader

  Language:C++1.7k4712372

• B3nac/Android-Reports-and-Resources

  A big list of Android Hackerone disclosed reports and other resources.

  1.5k921306

• Mr-Un1k0d3r/SCShell

  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

  Language:C1.4k295242

• rootclay/WMIHACKER

  A Bypass Anti-virus Software Lateral Movement Command Execution Tool

  Language:VBScript1.4k3317233

• assetnote/wordlists

  Automated & Manual Wordlists provided by Assetnote

  Language:CSS1.4k275141

• Arvanaghi/CheckPlease

  Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.

  Language:Go907301158

• visma-prodsec/confused

  Tool to check for dependency confusion vulnerabilities in multiple package management systems

  Language:Go706131698

• N7WEra/SharpAllTheThings

  The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.

  Language:Batchfile47117176

• carlospolop/hacktricks-cloud

  Language:Python463183172

• r35tart/GetIPinfo

  用于寻找多网卡主机方便内网跨网段渗透避免瞎打找不到核心网

  Language:Python2324234

• samratashok/RACE

  RACE is a PowerShell module for executing ACL attacks against Windows targets.

  Language:PowerShell2167061

• bigstrong2021/automated-subdomain-takeover

  261067

• fdbao/OSCP-Pentest-Methodologies

  备考 OSCP 的各种干货资料/渗透测试干货资料

  Language:C2103