Pinned Repositories
0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
0xagent
CobaltStrike 4.0 - 4.5 Patch
2021hvv_vul
2021hvv漏洞汇总
2022-HW-POC
2022 护网行动 POC 整理
ABPTTS
TCP tunneling over HTTP/HTTPS for web application servers
Active-Directory-Pentest-Notes
个人域渗透学习笔记
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Databasetools
一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
JavaLearning
Java learning notes
d4rkduck's Repositories
d4rkduck/domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
d4rkduck/AsyncRAT-C-Sharp
Open-Source Remote Administration Tool For Windows C# (RAT)
d4rkduck/C2
C2-下一代RAT
d4rkduck/CoercedPotatoRDLL
Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
d4rkduck/cornershot
Amplify network visibility from multiple POV of other hosts
d4rkduck/CVE-2023-20198-RCE
CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.
d4rkduck/CVE-2024-26229
CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
d4rkduck/goby_spider
爬取goby组件漏洞信息
d4rkduck/Knowledge-Base
Knowledge Base 慢雾安全团队知识库
d4rkduck/LKY_OfficeTools
一键自动化 下载、安装、激活 Office 的利器。
d4rkduck/LOLSpoof
An interactive shell to spoof some LOLBins command line
d4rkduck/lzCloudSecurity
《云安全攻防入门》教材
d4rkduck/mssql-command-tool
xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作,上传,job等相应操作。
d4rkduck/Nuclei-Templates-Collection
Nuclei Templates Collection
d4rkduck/NucleiFuzzer
NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications
d4rkduck/OperatorsKit
Collection of Beacon Object Files (BOF) for Cobalt Strike
d4rkduck/PingRAT
PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.
d4rkduck/POC
收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了600多个poc/exp,长期更新。
d4rkduck/poc-exp
Discuss POC and Exp
d4rkduck/ReadRemoteProcessCommandline_BOF
d4rkduck/redteam-tips
关于红队方面的学习资料
d4rkduck/SecDictionary
实战沉淀字典
d4rkduck/SGK_Sites_and_Bots
免费在线社工库查询网站和Telegram电报社工库机器人分享
d4rkduck/SharpBruteForceSSH
d4rkduck/SharpWeb
一个浏览器数据(密码|历史记录|Cookie|书签|下载记录)的导出工具,支持主流浏览器。
d4rkduck/smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
d4rkduck/Split_tools
分割小工具,可分割木马,一键生成写入、合并、追加命令
d4rkduck/VcenterKit
Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit
d4rkduck/vulnerability
收集、整理、修改互联网上公开的漏洞POC
d4rkduck/XG_NTAI
一键免杀冰蝎、哥斯拉等webshell的php、jsp木马文件