Pinned Repositories
2019-Read-article
2019年网上阅读过的文章记录
Active-Directory-Security-101
Active-Directory-Security-101
AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
AggressorScripts-1
Aggressor scripts for use with Cobalt Strike 3.0+
altdns
Generates permutations, alterations and mutations of subdomains and then resolves them
AntSword-Loader
AntSword 加载器
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
APT_REPORT
Interesting apt report collection and some special ioc express
Micro8
Gitbook
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
h3xhash's Repositories
h3xhash/Checklists
Red Teaming & Pentesting checklists for various engagements
h3xhash/Red-Teaming-Toolkit
A collection of open source and commercial tools that aid in red team operations.
h3xhash/awesome-ios-security-cn
iOS安全资料整理(中文)
h3xhash/LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
h3xhash/httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
h3xhash/Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
h3xhash/dirsearch
Web path scanner
h3xhash/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
h3xhash/assetfinder
Find domains and subdomains related to a given domain
h3xhash/avet
AntiVirus Evasion Tool
h3xhash/LECmd
Lnk Explorer Command line edition!!
h3xhash/metasploitable3
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
h3xhash/Burpsuite-Plugins-Usage
Burpsuite-Plugins-Usage
h3xhash/Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
h3xhash/CobaltStrike4.0_related
破解的cs4.0、cs4.0官方手册翻译和一些笔记
h3xhash/reGeorg
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
h3xhash/Phantom-Evasion
Python antivirus evasion tool
h3xhash/king-phisher
Phishing Campaign Toolkit
h3xhash/The-Hacker-Playbook-3-Translation
对 The Hacker Playbook 3 的翻译。
h3xhash/RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
h3xhash/RedTeamer
红方人员作战执行手册
h3xhash/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
h3xhash/awesome-burp-suite
Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
h3xhash/xsser
From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
h3xhash/sslScrape
SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
h3xhash/ffuf-scripts
Scripts to help with different ffuf tasks and workflows
h3xhash/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
h3xhash/Empire
Empire is a PowerShell and Python post-exploitation agent.
h3xhash/Red_Team
Some scripts useful for red team activities
h3xhash/upload-labs
一个想帮你总结所有类型的上传漏洞的靶场