anixet's Stars
MatrixTM/MHDDoS
Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
AzeemIdrisi/PhoneSploit-Pro
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
lcvvvv/kscan
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
bit4woo/domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
topotam/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
MrWQ/vulnerability-paper
收集的文章 https://mrwq.github.io/tools/paper/
sairson/Yasso
强大的内网渗透辅助工具集-让Yasso像风一样 支持rdp,ssh,redis,postgres,mongodb,mssql,mysql,winrm等服务爆破,快速的端口扫描,强大的web指纹识别,各种内置服务的一键利用(包括ssh完全交互式登陆,mssql提权,redis一键利用,mysql数据库查询,winrm横向利用,多种服务利用支持socks5代理执行)
Ershu1/2021_Hvv
2021 hw
TideSec/Decrypt_Weblogic_Password
搜集了市面上绝大部分weblogic解密方式,整理了7种解密weblogic的方法及响应工具。
optiv/Ivy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
nccgroup/nccfsas
Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.
shelld3v/JSshell
JSshell - JavaScript reverse/remote shell
mrd0x/EvilSelenium
EvilSelenium is a tool that weaponizes Selenium to attack Chromium based browsers.
WindXaa/Android-Vulnerability-Mining
Android APP漏洞之战系列,主要讲述如何快速挖掘APP漏洞
pmiaowu/HostCollision
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
boku7/azureOutlookC2
Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.
b0bac/GetMail
利用NTLM Hash读取Exchange邮件
9bie/sshdHooker
One-click injection into the SSHD process to record and send the password for ssh login
binganao/vulns-2022
本项目用于搜集 2022 年的漏洞,注意:本项目并不刻意搜集 POC 或 EXP,主要以CVE-2021、CVE-2022 为关键词,包含但不限于漏洞资讯、漏洞复现、漏洞分析、漏洞验证、漏洞利用
WangYihang/SourceLeakHacker
:bug: A multi threads web application source leak scanner
lele8/SharpUserIP
获取服务器或域控登录日志
A-D-Team/SharpMemshell
Memshell
RowTeam/SharpNTLMSSPExtract
利用 NTLMSSP 探测 Windows 信息
openfunltd/twcompany
台灣統一編號資料
Veraxy00/Shiro-EXP
Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马
howmp/iisproxy
通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
retr0-13/proxy_Attackchain
uw-ictd/GovHTTPS-Data
The dataset for the IMC'20 paper titled "Accept the Risk and Continue: Measuring the Long Tail of Government https Adoption"