Zero-winter

Zero-winter's Stars

• infosecn1nja/AD-Attack-Defense

  Attack and defend active directory using modern post exploitation adversary tradecraft activity

  4.4k22351k

• zer0yu/Awesome-CobaltStrike

  List of Awesome CobaltStrike Resources

  4k1012730

• teamssix/cf

  Cloud Exploitation Framework 云环境利用框架，方便安全人员在获得 AK 的后续工作

  Language:Go2.2k2336218

• phra/PEzor

  Open-Source Shellcode & PE Packer

  Language:C1.8k4150320

• CravateRouge/bloodyAD

  BloodyAD is an Active Directory Privilege Escalation Framework

  Language:Python1.2k1341114

• Ivan1ee/NET-Deserialize

  总结了20+.Net反序列化文章，持续更新

  69810780

• aeverj/NimShellCodeLoader

  免杀，bypassav，免杀框架，nim，shellcode，使用nim编写的shellcode加载器

  Language:C6161312113

• JamesCooteUK/SharpSphere

  .NET Project for Attacking vCenter

  Language:C#53516464

• bhassani/EternalBlueC

  EternalBlue suite remade in C/C++ which includes: MS17-010 Exploit, EternalBlue vulnerability detector, DoublePulsar detector and DoublePulsar Shellcode & DLL uploader

  Language:C5241010121

• plackyhacker/Shellcode-Injection-Techniques

  A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.

  Language:C#44613295

• outflanknl/Spray-AD

  A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.

  Language:C++41817155

• phillips321/adaudit

  Powershell script to do domain auditing automation

  Language:PowerShell3683021101

• evilashz/SharpADUserIP

  提取DC日志，快速获取域用户对应IP地址

  Language:C#2974044

• outflanknl/FindObjects-BOF

  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.

  Language:C26517047

• BinaryScary/NET-Obfuscate

  Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI

  Language:C#2296350

• crypt0p3g/bof-collection

  Collection of Beacon Object Files (BOF) for Cobalt Strike

  Language:C++1693326

• 0xfei/wincode

  过去写的一些Windows安全研究相关代码

  Language:C1347039

• klinix5/CVE-2021-1727

  Language:C++3119

• eastmountyxz/CVE-2020-0601-EXP

  这资源是作者复现微软签字证书漏洞CVE-2020-0601，结合相关资源及文章实现。推荐大家结合作者博客，理解ECC算法、Windows验证机制，并尝试自己复现可执行文件签名证书和HTTPS劫持的例子。作为网络安全初学者，自己确实很菜，但希望坚持下去，加油！

  Language:Ruby29202

• HotSec/subdomain

  使用异步协程的子域名爆破工具

  Language:Python232

• ChaMd5Team/Pentest-tools

  Language:Batchfile134

• killvxk/Cisco_ASA_Backdoor

  Language:C95

• giwon9977/CVE-2021-33739_PoC_Analysis

  CVE-2021-33739 PoC Analysis

  Language:C++5103

• killvxk/SharpKatz

  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

  Language:C#1