Zero-winter's Stars
infosecn1nja/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
zer0yu/Awesome-CobaltStrike
List of Awesome CobaltStrike Resources
teamssix/cf
Cloud Exploitation Framework 云环境利用框架,方便安全人员在获得 AK 的后续工作
phra/PEzor
Open-Source Shellcode & PE Packer
CravateRouge/bloodyAD
BloodyAD is an Active Directory Privilege Escalation Framework
Ivan1ee/NET-Deserialize
总结了20+.Net反序列化文章,持续更新
aeverj/NimShellCodeLoader
免杀,bypassav,免杀框架,nim,shellcode,使用nim编写的shellcode加载器
JamesCooteUK/SharpSphere
.NET Project for Attacking vCenter
bhassani/EternalBlueC
EternalBlue suite remade in C/C++ which includes: MS17-010 Exploit, EternalBlue vulnerability detector, DoublePulsar detector and DoublePulsar Shellcode & DLL uploader
plackyhacker/Shellcode-Injection-Techniques
A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.
outflanknl/Spray-AD
A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
phillips321/adaudit
Powershell script to do domain auditing automation
evilashz/SharpADUserIP
提取DC日志,快速获取域用户对应IP地址
outflanknl/FindObjects-BOF
A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or process handles.
BinaryScary/NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
crypt0p3g/bof-collection
Collection of Beacon Object Files (BOF) for Cobalt Strike
0xfei/wincode
过去写的一些Windows安全研究相关代码
klinix5/CVE-2021-1727
eastmountyxz/CVE-2020-0601-EXP
这资源是作者复现微软签字证书漏洞CVE-2020-0601,结合相关资源及文章实现。推荐大家结合作者博客,理解ECC算法、Windows验证机制,并尝试自己复现可执行文件签名证书和HTTPS劫持的例子。作为网络安全初学者,自己确实很菜,但希望坚持下去,加油!
HotSec/subdomain
使用异步协程的子域名爆破工具
ChaMd5Team/Pentest-tools
killvxk/Cisco_ASA_Backdoor
giwon9977/CVE-2021-33739_PoC_Analysis
CVE-2021-33739 PoC Analysis
killvxk/SharpKatz
Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands