5421007's Stars
yisier/nps
基于NPS 0.29.10 版本二开而来,NPS接力项目。公益云NPS:https://natnps.com
wy876/POC
收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1100多个poc/exp,长期更新。
es3n1n/no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
fdx-xdf/darkPulse
darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,免杀火绒,360核晶等国内常见杀软。
sadreck/Codecepticon
.NET/PowerShell/VBA Offensive Security Obfuscator
Purp1eW0lf/Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
luck-ying/Library-POC
基于Pocsuite3、goby编写的漏洞poc&exp存档
Threekiii/Awesome-POC
一个漏洞POC知识库 目前数量 1000+
BeichenDream/SharpToken
Windows Token Stealing Expert
huaigu4ng/SysWhispers3WinHttp
Syscall免杀
liamg/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
olist213/Information_Security_Books
信息安全方面的书籍
r0ysue/r0capture
安卓应用层抓包通杀脚本
White-hua/Apt_t00ls
高危漏洞利用工具
1n7erface/Template
Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
optiv/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
dwisiswant0/apkleaks
Scanning APK file for URIs, endpoints & secrets.
snyk/cli
Snyk CLI scans and monitors your projects for security vulnerabilities.
trickest/cve
Gather and update all available and newest CVEs with their PoC.
gophish/gophish
Open-Source Phishing Toolkit
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
FeeiCN/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
crowdsecurity/crowdsec
CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
knownsec/404StarLink
404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目
Mr-xn/RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
Bypass007/Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
guchangan1/All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
k8gege/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
gloxec/CrossC2
generate CobaltStrike's cross-platform payload