Pinned Repositories
0xUBypass
AntiAV shellcode loader
2022-HW-POC
2022 护网行动 POC 整理
afrog
afrog 是一款性能卓越、快速稳定、PoC 可定制化的漏洞扫描工具 - A tool for finding vulnerabilities
AheadLibEx
hijack dll Source Code Generator .
aksk_tool
AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/七牛云存储 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI执行命令,OSS/COS/S3管理,RDS/DB管理,域名管理,添加RAM/CAM/IAM账号等
All-Defense-Tool
本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms漏洞利用工具,爆破工具、内网横向及免杀、社工钓鱼以及应急响应等资料。
AniYa
免杀框架
AnotherRedisDesktopManager
🚀🚀🚀A faster, better and more stable Redis desktop manager [GUI client], compatible with Linux, Windows, Mac.
CVE-2021-22205-
CVE-2021-22205未授权漏洞批量检测与利用工具
MobaXtermKeyGen
MobaXterm Pro Key Generator, support the old/latest/future versions.
OFalwl's Repositories
OFalwl/swagger-exp
A Swagger API Exploit
OFalwl/Geacon-1
使用Golang实现CobaltStrike Beacon
OFalwl/random_c2_profile
Cobalt Strike random C2 Profile 修改版(适配腾讯云函数,亚马逊云函数和CrossC2自定义protocol)
OFalwl/geacon_plus
CobaltStrike beacon written in golang
OFalwl/Supershell
Supershell C2 远控平台,基于反向SSH隧道获取完全交互式Shell
OFalwl/Apt_t00ls
高危漏洞利用工具
OFalwl/ShiroRceTool
一个简单的Shiro RCE检测和利用脚本。- Simple scanner and exploit for Shiro RCE.
OFalwl/RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
OFalwl/JNDI-Injection-Exploit-Plus
60+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
OFalwl/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
OFalwl/gmailc2
A Fully Undetectable C2 Server That Communicates Via Google SMTP to evade Antivirus Protections and Network Traffic Restrictions
OFalwl/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
OFalwl/scalpel
scalpel是一款命令行漏洞扫描工具,支持深度参数注入,拥有一个强大的数据解析和变异算法,可以将常见的数据格式(json, xml, form等)解析为树结构,然后根据poc中的规则,对树进行变异,包括对叶子节点和树结构 的变异。变异完成之后,将树结构还原为原始的数据格式。 原理:https://mp.weixin.qq.com/s/U_llBwC05vb84U9wb8NZog
OFalwl/fuzz4bounty
Awesome wordlists for Bug Bounty Hunting
OFalwl/CobaltStrike_Cat_4.5
猫猫Cs:基于Cobalt Strike[4.5]二开 (原dogcs二开移植)
OFalwl/LinuxTQ
《Linux提权方法论》
OFalwl/BypassAvTool
源码免杀辅助工具
OFalwl/TsojanScan
一个集成的BurpSuite漏洞探测插件
OFalwl/sshd_backdoor
OFalwl/SpringBoot-Scan-GUI
OFalwl/autoRebind
Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code
OFalwl/jenkins-credentials-decryptor
Command line tool for dumping Jenkins credentials.
OFalwl/linuxStack
Linux技术栈
OFalwl/SharkOne
Cobalt Strike 二开项目
OFalwl/SpringBoot-Scan
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
OFalwl/linux_kernel_hacking
Linux Kernel Hacking
OFalwl/shiro_rce_tool
shiro 反序列 命令执行辅助检测工具
OFalwl/PyPhisher
Easy to use phishing tool with 77 website templates. Author is not responsible for any misuse.
OFalwl/PrintNotifyPotato
PrintNotifyPotato
OFalwl/covermyass
Post-exploitation tool to cover your tracks on various operating systems