ShanRen995's Stars
RustScan/RustScan
🤖 The Modern Port Scanner 🤖
BishopFox/sliver
Adversary Emulation Framework
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
kelvinBen/AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
cisagov/RedEye
RedEye is a visual analytic tool supporting Red & Blue Team operations
Y4tacker/JavaSec
a rep for documenting my study, may be from 0 to 0.1
teamssix/awesome-cloud-security
awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员
safe6Sec/Fastjson
Fastjson姿势技巧集合
optiv/Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
wikiZ/RedGuard
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
LittleBear4/OA-EXPTOOL
OA综合利用工具,集合将近20款OA漏洞批量扫描
fnmsd/MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
FSecureLABS/SharpGPOAbuse
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by that GPO.
smxiazi/NEW_xp_CAPTCHA
xp_CAPTCHA(瞎跑 白嫖版) burp 验证码 识别 burp插件
piiperxyz/AniYa
免杀框架
seventeenman/CallBackDump
dump lsass进程工具
0x727/SchTask_0x727
创建隐藏计划任务,权限维持,Bypass AV
achuna33/Memoryshell-JavaALL
收集内存马打入方式
su18/hack-fastjson-1.2.80
RoomaSec/RmTools
蓝队应急工具
Bywalks/K8s-Mind-Map
K8S安全攻防思维导图 | Docker安全攻防思维导图
jfrog/frogbot
🐸 Scans your Git repository with JFrog Xray for security vulnerabilities. 🤖
F3eev/SharkExec
内网渗透|红队工具|C#内存加载|cobaltstrike
ryan-weil/HideProcessHook
DLL that hooks the NtQuerySystemInformation API and hides a process name
SPuerBRead/shovel
Docker容器逃逸工具(Docker Escape Tools)
superdashu/pc_wxapkg_decrypt_python
PC微信小程序 wxapkg 解密
safe6Sec/ShiroAndFastJson
shiro加fastjson环境
3gstudent/Homework-of-Powershell
powershell codes of my blog.
AlphabugX/port_tunnel
这个工具只是临时名称,我称他为端口隧道技术,解决隔离内网上线问题。