Pinned Repositories
All-Defense-Tool
本项目集成了全网优秀的攻防工具项目,包含自动化利用,子域名、敏感目录、端口等扫描,各大中间件,cms漏洞利用工具以及应急响应等资料。
Blasting_dictionary
爆破字典
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Ivy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
noPac-1
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
ShellcodeWrapper
Shellcode wrapper with encryption for multiple target languages
shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
weaverOA_sql_injection
泛微OA某版本的SQL注入漏洞
weekpass
week pass update
windodws-logs-analysis
windows日志一键分析小工具
dogadmin's Repositories
dogadmin/awesome-attack-surface-monitoring
Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
dogadmin/windodws-logs-analysis
windows日志一键分析小工具
dogadmin/uncover
Quickly discover exposed hosts on the internet using multiple search engine.
dogadmin/weaverOA_sql_injection
泛微OA某版本的SQL注入漏洞
dogadmin/JDumpSpider
HeapDump敏感信息提取工具
dogadmin/sliver
Adversary Emulation Framework
dogadmin/heapdump_tool
heapdump敏感信息查询工具,例如查找 spring heapdump中的密码明文,AK,SK等
dogadmin/Ivy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
dogadmin/frp-modify
frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改
dogadmin/pspy-modify
automatic privilege escalation by pspy
dogadmin/riskscanner
RiskScanner 是开源的多云安全合规扫描平台,基于 Cloud Custodian 和 Nuclei 引擎,实现对主流公(私)有云资源的安全合规扫描和漏洞扫描。
dogadmin/CodeqlLearn
记录学习codeql的过程
dogadmin/noPac-1
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
dogadmin/noPac
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
dogadmin/Quasar
Remote Administration Tool for Windows
dogadmin/Cloaker
Simple, drag-and-drop, password-based file encryption
dogadmin/JNDIExploit
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
dogadmin/linux-pam-backdoor
Linux PAM Backdoor
dogadmin/NGLite
A major platform RAT Tool based by Blockchain/P2P.Now support Windows/Linux/MacOS
dogadmin/spider-flow
新一代爬虫平台,以图形化方式定义爬虫流程,不写代码即可完成爬虫。
dogadmin/CDK
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
dogadmin/shiro-550-with-NoCC
奇安信北京攻防团队: Shiro-550 不依赖CC链利用工具
dogadmin/Search-Tools
聚合空间测绘搜索(Fofa,Zoomeye,Quake,Shodan,Censys,BinaryEdge)
dogadmin/Ares-RedTeam_Box
Ares RedTeam_Box 是一款面相非初级网络渗透者,可高度自定义化的工具。
dogadmin/FrpProPlugin
frp0.33修改版,过流量检测,免杀,支持加载远程配置文件可用于cs直接使用的插件
dogadmin/Impost3r
👻Impost3r -- A linux password thief
dogadmin/r0capture
安卓应用层抓包通杀脚本
dogadmin/shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
dogadmin/Pentest-tools
内网渗透工具
dogadmin/pystinger
bypass firewall by webshell 一款使用webshell进行流量转发的出网工具